CVE-2021-45940
MEDIUM6.5EPSS 0.16%Published: 1/1/2022Modified: 7/1/2024
Also known as:BIT-bpftool-2021-45940
Description
libbpf 0.6.0 and 0.6.1 has a heap-based buffer overflow (4 bytes) in __bpf_object__open (called from bpf_object__open_mem and bpf-object-fuzzer.c).
Affected packages (2)
- Bitnami/bpftool>= 0.6.0, <= 0.6.0, >= 0.6.1, <= 0.6.1
- Debian/libbpffrom 0
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM6.5 | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H |