Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -5 articles for you...
197
security advisorysecurity updatedebianDebian 11 DLA-4137-1: Critical libbpf Use-After-Free and Null-Pointer Fix
Two vulnerabilities have been fixed in libbpf, a library for interacting with eBPF in the Linux kernel. CVE-2022-3534 . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4137-1
Apr 24, 2025
•Critical
Debian LTS
202
security advisorycritical issueopenSUSEopenSUSE Leap 15.4: SUSE-SU-2023:0406-1 Critical Updates for libbpf Issues
An update that fixes two vulnerabilities is now available.. SUSE Security Update: Security update for libbpf ______________________________________________________________________________ Announcement ID: SUSE-SU-2023:0405-1 Rating: important References: #1204391 #1204502 Cross-References: CVE-2022-3534 CVE-2022-3606 CVSS scores: CVE-2022-3534 (NVD) : 8 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-3534 (SUSE): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H CVE-2022-3606 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-3606 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: SUSE Linux Enterprise Desktop 15-SP4 SUSE Linux Enterprise High Performance Computing 15-SP4 SUSE Linux Enterprise Module for Basesystem 15-SP4 SUSE Linux Enterprise Server 15-SP4 SUSE Linux Enterprise Server for SAP Applications 15-SP4 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.3 openSUSE Leap 15.4 ______________________________________________________________________________ An update that fixes two vulnerabilities is now available. Description: This update for libbpf fixes the following issues: - CVE-2022-3534: Fixed use-after-free in btf_dump_name_dups (bsc#1204391). - CVE-2022-3606: Fixed null pointer dereference in find_prog_by_sec_insn() (bsc#1204502). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2023-405=1 - SUSE Linux Enterprise Module for Basesystem 15-SP4: zypper in-t patch SUSE-SLE-Module-Basesystem-15-SP4-2023-405=1 Package List: - openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64): libbpf-debugsource-0.5.0-150400.3.3.1 libbpf-devel-0.5.0-150400.3.3.1 libbpf0-0.5.0-150400.3.3.1 libbpf0-debuginfo-0.5.0-150400.3.3.1 - openSUSE Leap 15.4 (x86_64): libbpf0-32bit-0.5.0-150400.3.3.1 libbpf0-32bit-debuginfo-0.5.0-150400.3.3.1 - SUSE Linux Enterprise Module for Basesystem 15-SP4 (aarch64 ppc64le s390x x86_64): libbpf-debugsource-0.5.0-150400.3.3.1 libbpf0-0.5.0-150400.3.3.1 libbpf0-debuginfo-0.5.0-150400.3.3.1 References: https://www.suse.com/security/cve/CVE-2022-3534.html https://www.suse.com/security/cve/CVE-2022-3606.html https://bugzilla.suse.com/1204391 https://bugzilla.suse.com/1204502 . Critical libbpf security updates for openSUSE Leap 15.4 to fix important vulnerabilities. Update now!. libbpf Update, openSUSE Security, Vulnerability Fixes, Important Security Advisory. . Severity: Important. LinuxSecurity.com Team
Feb 14, 2023
•Important
OpenSUSE
172
security advisorydenial of servicecriticalUbuntu 22.10: 5759-2 Alert: LibBPF Buffer Overflow Leads to Security Breach
Several security issues were fixed in LibBPF.. =========================================================================Ubuntu Security Notice USN-5759-1 December 05, 2022 libbpf vulnerabilities ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 22.10 - Ubuntu 22.04 LTS Summary: Several security issues were fixed in LibBPF. Software Description: - libbpf: eBPF helper library (development files) Details: It was discovered that LibBPF incorrectly handled certain memory operations under certain circumstances. An attacker could possibly use this issue to cause LibBPF to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 22.10. (CVE-2021-45940, CVE-2021-45941, CVE-2022-3533) It was discovered that LibBPF incorrectly handled certain memory operations under certain circumstances. An attacker could possibly use this issue to cause LibBPF to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2022-3534, CVE-2022-3606) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 22.10: libbpf-dev 1:0.8.0-1ubuntu22.10.1 Ubuntu 22.04 LTS: libbpf-dev 1:0.5.0-1ubuntu22.04.1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-5759-1 CVE-2021-45940, CVE-2021-45941, CVE-2022-3533, CVE-2022-3534, CVE-2022-3606 Package Information: https://launchpad.net/ubuntu/+source/libbpf/0.8.0-1ubuntu22.10.1 . LibBPF encountered serious vulnerabilities patched in Ubuntu versions 22.04 and 22.10. Users at risk are urged to perform updates.. LibBPF Exploit, Ubuntu Security, Memory Management Issues. . Severity: Critical. LinuxSecurity.com Team
Dec 05, 2022
•Critical
Ubuntu
89
security advisorymoderateFedoraFedora 33: FEDORA-2021-4786624190 Moderate: Libbpf Kernel Rebase
The 5.13.3 stable kernel rebase contains new features, improved hardware support, and a number of important fixes across the tree.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-4786624190 2021-07-22 01:15:41.725857 --------------------------------------------------------------------------------Name : libbpf Product : Fedora 33 Version : 0.4.0 Release : 1.fc33 URL : https://github.com/libbpf/libbpf Summary : Libbpf library Description : A mirror of bpf-next linux tree bpf-next/tools/lib/bpf directory plus its supporting header files. The version of the package reflects the version of ABI. --------------------------------------------------------------------------------Update Information: The 5.13.3 stable kernel rebase contains new features, improved hardware support, and a number of important fixes across the tree. --------------------------------------------------------------------------------ChangeLog: * Mon Jul 19 2021 Justin M. Forbes - 2:0.4.0-1 - release 0.4.0-1 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-4786624190' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Jul 21, 2021
•Important
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!