Описание
If kernel headers need to be extracted, bpftrace will attempt to load them from a temporary directory. An unprivileged attacker could use this to force bcc to load compromised linux headers. Linux distributions which provide kernel headers by default are not affected by default.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | DNE | |
| devel | not-affected | kernel headers are provided by system |
| esm-apps/focal | not-affected | kernel headers are provided by system |
| esm-apps/jammy | not-affected | kernel headers are provided by system |
| focal | not-affected | kernel headers are provided by system |
| jammy | not-affected | kernel headers are provided by system |
| mantic | not-affected | kernel headers are provided by system |
| noble | not-affected | kernel headers are provided by system |
| trusty | DNE | |
| upstream | released | v0.20.2 |
Показывать по
Ссылки на источники
EPSS
2.8 Low
CVSS3
Связанные уязвимости
If kernel headers need to be extracted, bpftrace will attempt to load them from a temporary directory. An unprivileged attacker could use this to force bcc to load compromised linux headers. Linux distributions which provide kernel headers by default are not affected by default.
If kernel headers need to be extracted, bpftrace will attempt to load them from a temporary directory. An unprivileged attacker could use this to force bcc to load compromised linux headers. Linux distributions which provide kernel headers by default are not affected by default.
If kernel headers need to be extracted, bpftrace will attempt to load ...
EPSS
2.8 Low
CVSS3