CVE-2022-0500 An out-of-bounds memory write was found in BPF subsystem when a user loads BTF.

CVE-2022-0500 An out-of-bounds memory write was found in BPF subsystem when a user loads BTF.

If the user is allowed to have unrestricted eBPF permissions, then this flaw can be used by a local user to crash the system or bypass security restrictions.
RedHat has released a patch for RHEL7 and RHEL6 users to address this issue. The details of this issue can be found here.

CVE-2022: Memory Corruption in eBPF Programmable Interval Timer

If the user is allowed to have unrestricted eBPF permissions, then this flaw can be used by a local user to crash the system or bypass security restrictions.
This vulnerability in "eBPF Programmable Interval Timer" can allow a local attacker to overwrite sensitive kernel memory and possibly gain control of the affected system. Red Hat has released a patch for RHEL7 and RHEL6 users to address this issue. The details of this issue can be found here.

CVE-2020-0523

This vulnerability allows a local user to crash the system or bypass security restrictions.
RedHat has released a patch for RHEL6 users to address this issue. The details of this issue can be found here.

How to Outsource SEO Correctly & Avoid the 5 Most Common Mistakes

CVE-2019-10122

The flaw allows remote attackers to crash the system or bypass security restrictions.
RedHat has released a patch for RHEL7 and RHEL6 users to address this issue. The details of this issue can be found here.

CVE-2021-0501

If the user is allowed to have unrestricted eBPF permissions, then this flaw can be used by a local user to crash the system or bypass security restrictions.
RedHat has released a patch for RHEL6 and RHEL5 users to address this issue. The details of this issue can be found here.

References

Subscribe to CVE.news
Don’t miss out on the latest issues. Sign up now to get access to the library of members-only issues.
jamie@example.com
Subscribe