Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability was found in the Linux kernel's eBPF verifier when handling internal data structures. Internal memory locations could be returned to userspace. A local attacker with the permissions to insert eBPF code to the kernel can use this to leak internal kernel memory details defeating some of the exploit mitigations in place for the kernel. This flaws affects kernel versions < v5.16-rc6
CVSS Information
N/A
Vulnerability Type
对异常条件的处理不恰当
Vulnerability Title
Linux kernel 信息泄露漏洞
Vulnerability Description
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel 存在信息泄露漏洞,该漏洞源于在处理内部数据结构时,在 Linux 内核的 eBPF 验证程序中发现了一个漏洞。 内部存储器位置可以返回到用户空间。 有权将 eBPF 代码插入内核的本地攻击者可以使用它来泄漏内部内核内存详细信息,从而破坏针对内核的一些漏洞利用缓解措施。
CVSS Information
N/A
Vulnerability Type
N/A