Endpoint Vulnerability

CVE-2020-8835kernel: out-of-bounds read/write in the bpf verifier

Description

An out-of-bounds access flaw was found in the Linux kernel s implementation of the eBPF code verifier, where an incorrect register bounds calculation while checking 32-bit instructions in an eBPF program occurs. This flaw allows an unprivileged user or process to execute eBPF programs to crash the kernel, resulting in a denial of service or potentially gaining root privileges on the system.

Affected Products

kernel

References

CVE-2020-8835,