A vulnerability classified as critical has been found in Linux Kernel. Affected is the function btfdumpnamedups of the file tools/lib/bpf/btfdump.c of the component libbpf. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-211032.
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "1:0.5.0-1~ubuntu20.04.1+esm1", "binary_name": "libbpf-dev" }, { "binary_version": "1:0.5.0-1~ubuntu20.04.1+esm1", "binary_name": "libbpf0" }, { "binary_version": "1:0.5.0-1~ubuntu20.04.1+esm1", "binary_name": "libbpf0-dbgsym" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "1:0.5.0-1ubuntu22.04.1", "binary_name": "libbpf-dev" }, { "binary_version": "1:0.5.0-1ubuntu22.04.1", "binary_name": "libbpf0" }, { "binary_version": "1:0.5.0-1ubuntu22.04.1", "binary_name": "libbpf0-dbgsym" } ] }