« List of all CVEs

CVE-2023-39191

Kernel: ebpf: insufficient stack type checks in dynptr

Published: 10/4/2023 Last updated: 2/27/2025 Reserved: 7/25/2023

An improper input validation flaw was found in the eBPF subsystem in the Linux kernel. The issue occurs due to a lack of proper validation of dynamic pointers within user-supplied eBPF programs prior to executing them. This may allow an attacker with CAP_BPF privileges to escalate privileges and execute arbitrary code in the context of the kernel.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Metrics

Version Score Severity Vector String
3.1 8.2 High CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

Opam packages affected (27)

albatross cdrom conf-bpftool conf-libbpf conf-linux-libc-dev core core_unix hvsock mirage-block-unix mm ocaml-probes orun rawlink rawlink-eio rawlink-lwt shell solo5 solo5-bindings-hvt solo5-bindings-spt solo5-cross-aarch64 solo5-kernel-ukvm tracy-client tuntap uring vhd-format vhd-format-lwt xapi-stdext-unix

Products affected (11)

Product Vendor Version
Red Hat Enterprise Linux 9 Red Hat n/a
Red Hat Enterprise Linux 9 Red Hat 6.0.6
Red Hat Enterprise Linux 9.2 Extended Update Support Red Hat Windows Server 2008 for x64-based Systems Service Pack 2
Red Hat Enterprise Linux 6 Red Hat Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, Windows Server 2016, Microsoft Office 2007 SP3, Microsoft Office 2010 SP2, Microsoft Office Word Viewer, Microsoft Lync 2013 SP1, Skype for Business 2016, Microsoft Silverlight 5 Developer Runtime when installed on Microsoft Windows, and Microsoft Silverlight 5 when installed on Microsoft Windows.
Red Hat Enterprise Linux 7 Red Hat n/a
Red Hat Enterprise Linux 8 Red Hat Windows 10 Version 1607 for 32-bit Systems
Red Hat Enterprise Linux 8 Red Hat Windows 10 Version 1607 for x64-based Systems
Red Hat Enterprise Linux 7 Red Hat n/a
Red Hat Enterprise Linux 9.2 Extended Update Support Red Hat <= 2.0.53
Red Hat Enterprise Linux 9 Red Hat SaltStack Salt prior to 3002.8, 3003.4, 3004.1
Red Hat Enterprise Linux 9.2 Extended Update Support Red Hat 7.0.2

References (14)

Credits (1)