Lucene search
+L

35 matches found

CVE
CVE
added 2025/09/18 4:4 p.m.37 views

CVE-2023-53441

CVE-2023-53441: Linux kernel bpf cpumap memory leak fix. The vulnerability concerns cpu_map_update_elem leaking memory in the BPF map update path (cpu_map_entry_alloc path) as observed by Syzkaller. The fix is in the kernel, referenced by commits such as a957ac8e0b5ffb5797382a6adbafd005a5f72851 a...

5.5CVSS6AI score0.00136EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2025/09/18 4:4 p.m.6 views

CVE-2023-53441 bpf: cpumap: Fix memory leak in cpu_map_update_elem

In the Linux kernel, the following vulnerability has been resolved: bpf: cpumap: Fix memory leak in cpumapupdateelem Syzkaller reported a memory leak as follows: BUG: memory leak unreferenced object 0xff110001198ef748 size 192: comm "syz-executor.3", pid 17672, jiffies 4298118891 age 9.906s hex...

5.5CVSS5.8AI score0.00136EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2024/11/12 9:11 a.m.3 views

kernel: bpf: Check rcu_read_lock_trace_held() before calling bpf map helpers

In the Linux kernel, the following vulnerability has been resolved: bpf: Check rcureadlocktraceheld before calling bpf map helpers These three bpfmaplookup,update,deleteelem helpers are also available for sleepable bpf program, so add the corresponding lock assertion for sleepable bpf program,...

7.8CVSS6.7AI score0.00238EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/08/23 2:53 a.m.3 views

SUSE CVE-2022-48940

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix crash due to incorrect copymapvalue When both bpfspinlock and bpftimer are present in a BPF map value, copymapvalue needs to skirt both objects when copying a value into and out of the map. However, the current code does...

5.5CVSS6.2AI score0.00207EPSS
Exploits0References6
OSV
OSV
added 2024/06/21 12:15 p.m.6 views

UBUNTU-CVE-2024-38662

In the Linux kernel, the following vulnerability has been resolved: bpf: Allow delete from sockmap/sockhash only if update is allowed We have seen an influx of syzkaller reports where a BPF program attached to a tracepoint triggers a locking rule violation by performing a mapdelete on a...

4.7CVSS6.1AI score0.0022EPSS
Exploits0References21
RedHat Linux
RedHat Linux
added 2024/05/22 10:3 a.m.3 views

kernel: bpf: cpumap: Fix memory leak in cpu_map_update_elem

In the Linux kernel, the following vulnerability has been resolved: bpf: cpumap: Fix memory leak in cpumapupdateelem Syzkaller reported a memory leak as follows: BUG: memory leak unreferenced object 0xff110001198ef748 size 192: comm "syz-executor.3", pid 17672, jiffies 4298118891 age 9.906s hex...

5.5CVSS6.8AI score0.00136EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/04/30 9:57 a.m.9 views

kernel: bpf: cpumap: Fix memory leak in cpu_map_update_elem

In the Linux kernel, the following vulnerability has been resolved: bpf: cpumap: Fix memory leak in cpumapupdateelem Syzkaller reported a memory leak as follows: BUG: memory leak unreferenced object 0xff110001198ef748 size 192: comm "syz-executor.3", pid 17672, jiffies 4298118891 age 9.906s hex...

5.5CVSS6.8AI score0.00136EPSS
Exploits0References5
OSV
OSV
added 2024/03/26 6:15 p.m.9 views

DEBIAN-CVE-2023-52621

In the Linux kernel, the following vulnerability has been resolved: bpf: Check rcureadlocktraceheld before calling bpf map helpers These three bpfmaplookup,update,deleteelem helpers are also available for sleepable bpf program, so add the corresponding lock assertion for sleepable bpf program,...

7.8CVSS5.5AI score0.00238EPSS
Exploits0References1
OSV
OSV
added 2024/03/26 6:15 p.m.6 views

UBUNTU-CVE-2023-52621

In the Linux kernel, the following vulnerability has been resolved: bpf: Check rcureadlocktraceheld before calling bpf map helpers These three bpfmaplookup,update,deleteelem helpers are also available for sleepable bpf program, so add the corresponding lock assertion for sleepable bpf program,...

7.8CVSS6.1AI score0.00238EPSS
Exploits0References22
BDU FSTEC
BDU FSTEC
added 2022/09/23 12:0 a.m.7 views

The vulnerability of the verifier functions ebpf in the bpf_map_update_elem and bpf_map_freeze components of the Linux operating system’s kernel/bpf/syscall.c module allows a attacker to compromise data integrity.

The vulnerability of the verifier functions ebpf in the bpfmapupdateelem and bpfmapfreeze components of the Linux operating system’s kernel/bpf/syscall.c file is related to the absence of locking mechanisms. Exploiting this vulnerability allows an attacker to compromise data integrity...

4.4CVSS6.6AI score0.00186EPSS
Exploits0References10Affected Software3
OSV
OSV
added 2022/01/21 7:15 p.m.1 views

DEBIAN-CVE-2021-4001

A race condition was found in the Linux kernel's ebpf verifier between bpfmapupdateelem and bpfmapfreeze due to a missing lock in kernel/bpf/syscall.c. In this flaw, a local user with a special privilege capsysadmin or capbpf can modify the frozen mapped address space. This flaw affects kernel...

4.1CVSS6.3AI score0.00186EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2011/05/19 12:0 a.m.3 views

PT-2012-1503 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.38 Description: The issue is related to the Reliable Datagram Sockets RDS subsystem in the Linux kernel, which does not properly handle congestion map updates. This can be exploited by local users to cause a...

9CVSS5.7AI score0.0389EPSS
Exploits5References28
Exploit DB
Exploit DB
added 2010/07/25 12:0 a.m.39 views

Solaris - ypupdated Command Execution (Metasploit)

$Id: ypupdatedexec.rb 9929 2010-07-25 21:37:54Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

5CVSS7AI score0.4853EPSS
Exploits7
Packet Storm
Packet Storm
added 2009/10/28 12:0 a.m.36 views

Solaris ypupdated Command Execution

require 'msf/core' class Metasploit3 'Solaris ypupdated Command Execution', 'Description' = %q This exploit targets a weakness in the way the ypupdated RPC application uses the command shell when handling a MAP UPDATE request. Extra commands may be launched through this command shell, which runs ...

5CVSS0.1AI score0.4853EPSS
Exploits7
seebug.org
seebug.org
added 2008/04/05 12:0 a.m.25 views

Sun Solaris <= 10 rpc.ypupdated Remote Root Exploit (meta)

No description provided by source. / \ / \ | | | | ----====/ /\/ /\ | || |====---- | | | || | | | | | | | | | | | | |...

7.1AI score
Exploits0
Rows per page
Query Builder