Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2024-2314

Опубликовано: 10 мар. 2024
Источник: debian
EPSS Низкий

Описание

If kernel headers need to be extracted, bcc will attempt to load them from a temporary directory. An unprivileged attacker could use this to force bcc to load compromised linux headers. Linux distributions which provide kernel headers by default are not affected by default.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
bpfccfixed0.31.0+ds-2package
bpfccnot-affectedbusterpackage

Примечания

  • Fixed by: https://github.com/iovisor/bcc/commit/008ea09e891194c072f2a9305a3c872a241dc342 (v0.30.0)

  • Introduced by: https://github.com/iovisor/bcc/commit/ae92f3ddb6aa5b81c750abf3540b99f24d219e67 (v0.10.0)

  • Attempt to mitigate in https://bugs.debian.org/1028479 (applied in 0.25.0+ds-2), and

  • resulting in the additional problem in https://bugs.debian.org/1068297

  • https://bugzilla.suse.com/show_bug.cgi?id=1221229#c1

  • Does not affect Debian kernels since CONFIG_IKHEADERS isn't set

EPSS

Процентиль: 7%
0.00029
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2024-2314

CVSS3: 2.8
ubuntu
больше 1 года назад

If kernel headers need to be extracted, bcc will attempt to load them from a temporary directory. An unprivileged attacker could use this to force bcc to load compromised linux headers. Linux distributions which provide kernel headers by default are not affected by default.

redhat логотип

CVE-2024-2314

CVSS3: 2.8
redhat
больше 1 года назад

If kernel headers need to be extracted, bcc will attempt to load them from a temporary directory. An unprivileged attacker could use this to force bcc to load compromised linux headers. Linux distributions which provide kernel headers by default are not affected by default.

nvd логотип

CVE-2024-2314

CVSS3: 2.8
nvd
больше 1 года назад

If kernel headers need to be extracted, bcc will attempt to load them from a temporary directory. An unprivileged attacker could use this to force bcc to load compromised linux headers. Linux distributions which provide kernel headers by default are not affected by default.

rocky логотип

RLSA-2024:8831

rocky
7 месяцев назад

Low: bcc security update

github логотип

GHSA-883r-qq2g-w5xj

CVSS3: 2.8
github
больше 1 года назад

If kernel headers need to be extracted, bcc will attempt to load them from a temporary directory. An unprivileged attacker could use this to force bcc to load compromised linux headers. Linux distributions which provide kernel headers by default are not affected by default.

EPSS

Процентиль: 7%
0.00029
Низкий