Libbpf Security Vulnerabilities and Issues — Libbpf CVE List

Libbpf ProjectLibbpf

3 matches found

CVE•added 2021/12/31 11:57 p.m.•73 views

CVE-2021-45940

CVE-2021-45940 affects libbpf 0.6.0 and 0.6.1, causing a heap-based buffer overflow (4 bytes) in __bpf_object__open (invoked by bpf_object__open_mem and bpf-object-fuzzer.c). The vulnerability could cause the application to crash. The provided documents do not specify a vendor patch or remediatio...

6.5CVSS6.7AI score0.01123EPSS

CVE•added 2021/12/31 11:57 p.m.•69 views

CVE-2021-45941

CVE-2021-45941 — A heap-based buffer overflow (8 bytes) in libbpf's __bpf_object__open (invoked by bpf_object__open_mem and bpf-object-fuzzer.c) affects libbpf versions 0.6.0 and 0.6.1. Connected sources (e.g., Nessus/Red Hat mentions of CVE-2021-45941) describe an impact of potential crash for a...

6.5CVSS6.7AI score0.01088EPSS

CVE•added 2025/04/07 12:0 a.m.•65 views

CVE-2025-29481

CVE-2025-29481 affects libbpf up to 1.5.0 and can enable local arbitrary code execution via a buffer overflow in bpf_object__init_prog. Reported by multiple vendors: F5 lists Trafﬁx SDC remediation to v4.3.0; IBM/Instana advisories describe affected builds and recommend upgrading to fixed release...

6.2CVSS8.1AI score0.00201EPSS