VYPR
Unrated severityNVD Advisory· Published Oct 4, 2023· Updated Nov 6, 2025

Kernel: ebpf: insufficient stack type checks in dynptr

CVE-2023-39191

Description

An improper input validation flaw was found in the eBPF subsystem in the Linux kernel. The issue occurs due to a lack of proper validation of dynamic pointers within user-supplied eBPF programs prior to executing them. This may allow an attacker with CAP_BPF privileges to escalate privileges and execute arbitrary code in the context of the kernel.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

58

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.