Lucene search
K

12 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.1 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: LoongArch: BPF: Do not override the return value of subprog The verifier test "calls: div by 0 in subprog" triggers a panic at the ld.bu instruction. The ld.bu instruction attempts to load a byte from the memory address returned ...

5.5CVSS5.8AI score0.00165EPSS
Exploits0References2
OSV
OSV
added 2025/06/18 11:15 a.m.1 views

UBUNTU-CVE-2022-50168

In the Linux kernel, the following vulnerability has been resolved: bpf, x86: fix freeing of not-finalized bpfprogpack syzbot reported a few issues with bpfprogpack 1, 2. This only happens with multiple subprogs. In jitsubprogs, we first call bpfintjitcompile on each sub program. And then, we cal...

7.8CVSS6.2AI score0.00206EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2025/05/07 2:13 a.m.2 views

SUSE CVE-2024-58098

In the Linux kernel, the following vulnerability has been resolved: bpf: track changespktdata property for global functions When processing calls to certain helpers, verifier invalidates all packet pointers in a current state. For example, consider the following program: attributenoinline long...

5.5CVSS7.7AI score0.00146EPSS
Exploits0References16
OSV
OSV
added 2025/05/05 3:15 p.m.5 views

AZL-69926 CVE-2024-58098 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: bpf: track changespktdata property for global functions When processing calls to certain helpers, verifier invalidates all packet pointers in a current state. For example, consider the following program: attributenoinline long...

5.5CVSS6.7AI score0.00146EPSS
Exploits0References1
OSV
OSV
added 2025/05/05 3:15 p.m.0 views

UBUNTU-CVE-2024-58237

In the Linux kernel, the following vulnerability has been resolved: bpf: consider that tail calls invalidate packet pointers Tail-called programs could execute any of the helpers that invalidate packet pointers. Hence, conservatively assume that each tail call invalidates packet pointers. Making...

5.5CVSS6.3AI score0.00147EPSS
Exploits0References16
SUSE CVE
SUSE CVE
added 2025/04/18 11:20 p.m.3 views

SUSE CVE-2025-22048

In the Linux kernel, the following vulnerability has been resolved: LoongArch: BPF: Don't override subprog's return value The verifier test calls: div by 0 in subprog triggers a panic at the ld.bu instruction. The ld.bu insn is trying to load byte from memory address returned by the subprog. The...

5.5CVSS7.7AI score0.00165EPSS
Exploits0References3
OSV
OSV
added 2025/04/16 3:15 p.m.1 views

UBUNTU-CVE-2025-22048

In the Linux kernel, the following vulnerability has been resolved: LoongArch: BPF: Don't override subprog's return value The verifier test calls: div by 0 in subprog triggers a panic at the ld.bu instruction. The ld.bu insn is trying to load byte from memory address returned by the subprog. The...

5.5CVSS5.7AI score0.00165EPSS
Exploits0References8
CVE
CVE
added 2025/04/16 2:12 p.m.82 views

CVE-2025-22048

Summary of CVE-2025-22048 (Linux kernel LoongArch BPF issue) : The problem was triggered by sign-extending the BPF return value. After commit 73c359d1d356, a5 (BPF return value) was sign-extended to a0, and for native calls the a0 value was propagated back to a5. For bpf2bpf calls this propagatio...

5.5CVSS6.4AI score0.00165EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2024/05/21 3:15 p.m.16 views

CVE-2021-47303

In the Linux kernel, the following vulnerability has been resolved: bpf: Track subprog poke descriptors correctly and fix use-after-free Subprograms are calling mappoketrack, but on program release there is no hook to call mappokeuntrack. However, on program release, the aux memory and poke...

7.8CVSS6.2AI score0.00235EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2024/05/21 3:15 p.m.18 views

CVE-2021-47303

In the Linux kernel, the following vulnerability has been resolved: bpf: Track subprog poke descriptors correctly and fix use-after-free Subprograms are calling mappoketrack, but on program release there is no hook to call mappokeuntrack. However, on program release, the aux memory and poke...

7.8CVSS6.3AI score0.00235EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/05/21 2:35 p.m.27 views

CVE-2021-47303 bpf: Track subprog poke descriptors correctly and fix use-after-free

In the Linux kernel, the following vulnerability has been resolved: bpf: Track subprog poke descriptors correctly and fix use-after-free Subprograms are calling mappoketrack, but on program release there is no hook to call mappokeuntrack. However, on program release, the aux memory and poke...

6.2AI score0.00235EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2023/05/09 10:4 a.m.1 views

kernel: bpf: Fix combination of jit blinding and pointers to bpf subprogs.

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix combination of jit blinding and pointers to bpf subprogs. The combination of jit blinding and pointers to bpf subprogs causes: 36.989548 BUG: unable to handle page fault for address: 0000000100000001 36.990342 PF:...

5.5CVSS6.3AI score0.00239EPSS
Exploits0References5
Rows per page
Query Builder