prealloc_elems_and_freelist in kernel/bpf/stackmap.c in the Linux kernel before 5.14.12 allows unprivileged users to trigger an eBPF multiplication integer overflow with a resultant out-of-bounds. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.
Buffer Overflow
Linux
Integer Overflow
Linux Kernel
Fedora
+13
NVD
GitHub
CVSS 3.1
7.8
EPSS
0.4%