Lucene search
+L

7 matches found

mscve
mscve
added 2026/06/27 8:12 a.m.4 views

bpf: Fix NULL deref in map_kptr_match_type for scalar regs

...

5.5CVSS6.1AI score0.00122EPSS
Exploits0
euvd
euvd
added 2026/06/24 6:32 p.m.6 views

EUVD-2026-38900

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix NULL deref in mapkptrmatchtype for scalar regs Commit ab6c637ad027 "bpf: Fix a bpfkptrxchg issue with local kptr" refactored mapkptrmatchtype to branch on btfiskernel before checking basetype. A scalar register stored in...

5.7AI score0.00122EPSS
Exploits0References6
osv
osv
added 2026/06/24 4:30 p.m.5 views

CVE-2026-53081 bpf: Enforce regsafe base id consistency for BPF_ADD_CONST scalars

In the Linux kernel, the following vulnerability has been resolved: bpf: Enforce regsafe base id consistency for BPFADDCONST scalars When regsafe compares two scalar registers that both carry BPFADDCONST, checkscalarids maps their full compound id aka base | BPFADDCONST flag as one idmap entry...

7.8CVSS5.8AI score0.00116EPSS
Exploits0References10
osv
osv
added 2026/06/24 4:29 p.m.4 views

CVE-2026-53032 bpf: Fix NULL deref in map_kptr_match_type for scalar regs

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix NULL deref in mapkptrmatchtype for scalar regs Commit ab6c637ad027 "bpf: Fix a bpfkptrxchg issue with local kptr" refactored mapkptrmatchtype to branch on btfiskernel before checking basetype. A scalar register stored in...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References8
cve
cve
added 2026/06/24 4:29 p.m.8 views

CVE-2026-53032

The CVE-2026-53032 issue affects the Linux kernel's BPF subsystem, specifically the map_kptr_match_type function. A scalar register stored into a kptr can trigger a NULL dereference when the code branches on btf_is_kernel(reg->btf) before verifying base_type(), since such registers have no BTF...

5.5CVSS5.7AI score0.00122EPSS
Exploits0References5Affected Software1
ptsecurity
ptsecurity
added 2026/06/24 12:0 a.m.11 views

PT-2026-51926

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A NULL pointer dereference occurs in the map kptr match type function when handling scalar registers. This happens because the function calls btf is kernel before verifying the base type...

6.7CVSS5.9AI score0.00122EPSS
Exploits0References14
cve
cve
added 2025/02/26 2:23 a.m.103 views

CVE-2022-49658

CVE-2022-49658 concerns the Linux kernel’s BPF bounds propagation. The issue stems from insufficient propagation of tnum min/max bounds into register bounds during operations like adjust_scalar_min_max_vals, allowing a register that becomes a constant-like value to leak pointers when it is later ...

5.5CVSS5.2AI score0.00273EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder