Jann Horn discovered that the Berkeley Packet Filter (BPF) implementation in the Linux kernel improperly performed sign extension in some situations. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code.
{ "availability": "No subscription required", "binaries": [ { "binary_version": "4.4.0-9026.28", "binary_name": "linux-euclid-headers-4.4.0-9026" }, { "binary_version": "4.4.0-9026.28", "binary_name": "linux-euclid-tools-4.4.0-9026" }, { "binary_version": "4.4.0-9026.28", "binary_name": "linux-euclid-tools-4.4.0-9026-dbgsym" }, { "binary_version": "4.4.0-9026.28", "binary_name": "linux-headers-4.4.0-9026-euclid" }, { "binary_version": "4.4.0-9026.28", "binary_name": "linux-image-4.4.0-9026-euclid" }, { "binary_version": "4.4.0-9026.28", "binary_name": "linux-image-4.4.0-9026-euclid-dbgsym" }, { "binary_version": "4.4.0-9026.28", "binary_name": "linux-image-extra-4.4.0-9026-euclid" }, { "binary_version": "4.4.0-9026.28", "binary_name": "linux-tools-4.4.0-9026-euclid" } ] }