Lucene search
K

56 matches found

OSV
OSV
added 2023/01/17 4:1 p.m.7 views

GSD-2023-1000101 libbpf: Handle size overflow for ringbuf mmap

libbpf: Handle size overflow for ringbuf mmap This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.12 by commit...

7.5AI score
Exploits0
Positive Technologies
Positive Technologies
added 2023/01/17 12:0 a.m.2 views

PT-2023-33267 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions v5.8 through v5.15.81 Description: The issue is related to a handle size overflow for ringbuf mmap in libbpf. It was introduced in version v5.8 and fixed in version v5.15.82. The actual impact and attack plausibility hav...

7.4AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/01/17 12:0 a.m.9 views

PT-2024-11887 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A size overflow issue has been identified in the Linux kernel, specifically in the libbpf component when handling ringbuf mmap. The maximum size of ringbuf is 2GB on x86-64 hosts, whic...

7.9CVSS6.8AI score0.03702EPSS
Exploits3References166
OSV
OSV
added 2022/02/27 3:40 a.m.16 views

GSD-2022-1000680 bpf: Use VM_MAP instead of VM_ALLOC for ringbuf

bpf: Use VMMAP instead of VMALLOC for ringbuf This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.16.8 by commit...

7.3AI score
Exploits0
OSV
OSV
added 2022/02/18 9:59 p.m.6 views

GSD-2022-1000233 bpf: Use VM_MAP instead of VM_ALLOC for ringbuf

bpf: Use VMMAP instead of VMALLOC for ringbuf This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.99 by commit...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/11/11 12:0 a.m.46 views

RHEL 8 : kernel-rt (RHSA-2021:4140)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:4140 advisory. The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirement...

8.8CVSS7.5AI score0.07604EPSS
Exploits12References94
CNVD
CNVD
added 2021/07/16 12:0 a.m.46 views

Linux kernel buffer overflow vulnerability (CNVD-2021-54396)

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel. The vulnerability stems from the fact that eBPF RINGBUF bpfringbufreserve does not check if the allocated size is smaller...

7.8CVSS7.3AI score0.0055EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/07/01 12:0 a.m.61 views

SUSE SLES15 Security Update : kernel (Live Patch 0 for SLE 15 SP3) (SUSE-SU-2021:2198-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:2198-1 advisory. This update for the Linux Kernel 5.3.18-57 fixes several issues. The following issues were fixed: - CVE-2021-3489: Fixed an issue where the eBP...

8.8CVSS7.1AI score0.27477EPSS
Exploits10References23
NVD
NVD
added 2021/06/04 2:15 a.m.17 views

CVE-2021-3489

The eBPF RINGBUF bpfringbufreserve function in the Linux kernel did not check that the allocated size was smaller than the ringbuf size, allowing an attacker to perform out-of-bounds writes within the kernel and therefore, arbitrary code execution. This issue was fixed via commit 4b81ccebaeee "bp...

7.8CVSS0.0055EPSS
Exploits0References6
OSV
OSV
added 2021/06/04 2:15 a.m.9 views

CVE-2021-3489

The eBPF RINGBUF bpfringbufreserve function in the Linux kernel did not check that the allocated size was smaller than the ringbuf size, allowing an attacker to perform out-of-bounds writes within the kernel and therefore, arbitrary code execution. This issue was fixed via commit 4b81ccebaeee "bp...

7.8CVSS8.2AI score
Exploits0References6
Prion
Prion
added 2021/06/04 2:15 a.m.21 views

Design/Logic Flaw

The eBPF RINGBUF bpfringbufreserve function in the Linux kernel did not check that the allocated size was smaller than the ringbuf size, allowing an attacker to perform out-of-bounds writes within the kernel and therefore, arbitrary code execution. This issue was fixed via commit 4b81ccebaeee "bp...

7.2CVSS8AI score0.0055EPSS
Exploits0References6Affected Software2
Debian CVE
Debian CVE
added 2021/06/04 1:40 a.m.35 views

CVE-2021-3489

The eBPF RINGBUF bpfringbufreserve function in the Linux kernel did not check that the allocated size was smaller than the ringbuf size, allowing an attacker to perform out-of-bounds writes within the kernel and therefore, arbitrary code execution. This issue was fixed via commit 4b81ccebaeee "bp...

7.8CVSS7.3AI score0.0055EPSS
Exploits0
CVE
CVE
added 2021/06/04 1:40 a.m.383 views

CVE-2021-3489

CVE-2021-3489 concerns the Linux kernel eBPF RINGBUF: the bpf_ringbuf_reserve() function could allocate a size larger than the ringbuf, enabling out-of-bounds writes and potential arbitrary code execution. The issue was fixed by commit 4b81ccebaeee ("bpf, ringbuf: Deny reserve of buffers larger t...

7.8CVSS8.1AI score0.0055EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2021/06/04 1:40 a.m.22 views

CVE-2021-3489 Linux kernel eBPF RINGBUF map oversized allocation

The eBPF RINGBUF bpfringbufreserve function in the Linux kernel did not check that the allocated size was smaller than the ringbuf size, allowing an attacker to perform out-of-bounds writes within the kernel and therefore, arbitrary code execution. This issue was fixed via commit 4b81ccebaeee "bp...

7.8CVSS8.4AI score0.0055EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2021/05/12 12:0 a.m.66 views

Ubuntu 20.04 LTS : Linux kernel vulnerabilities (USN-4949-1)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4949-1 advisory. Ryota Shiga discovered that the eBPF implementation in the Linux kernel did not properly verify that a BPF program only reserved as much memory for a rin...

8.8CVSS7.5AI score0.27477EPSS
Exploits9References13
UbuntuCve
UbuntuCve
added 2021/05/11 5:0 p.m.44 views

CVE-2021-3489

The eBPF RINGBUF bpfringbufreserve function in the Linux kernel did not check that the allocated size was smaller than the ringbuf size, allowing an attacker to perform out-of-bounds writes within the kernel and therefore, arbitrary code execution. This issue was fixed via commit 4b81ccebaeee "bp...

7.8CVSS7AI score0.0055EPSS
Exploits0References6
Rows per page
Query Builder