VYPR
← All advisories
Medium severity5.9GHSA Advisory· Published May 18, 2026· Updated May 18, 2026

OpenTelemetry eBPF Instrumentation: CPU-mismatch fallback uses 256-byte buffer with 8KB size

CVE-2026-45681

Description

Summary

The per-CPU message-buffer fallback path uses a 256-byte backup buffer but preserves the original payload size, which can be up to 8KB. If a CPU mismatch occurs, OBI can read beyond the fallback buffer and leak adjacent memory into telemetry.

Details

https://github.com/open-telemetry/opentelemetry-ebpf-instrumentation/blob/032473449b53d9f02ec4619d4f5b84e6a81db362/bpf/common/http_buf_size.h#L4-L7

k_kprobes_http2_buf_size is defined as 256 bytes, the size of the fallback buffer.

https://github.com/open-telemetry/opentelemetry-ebpf-instrumentation/blob/032473449b53d9f02ec4619d4f5b84e6a81db362/bpf/common/msg_buffer.h#L12-L36

Introduces 8KB per-CPU buffer and 256-byte fallback_buf in msg_buffer_t, creating a size mismatch for fallback use.

https://github.com/open-telemetry/opentelemetry-ebpf-instrumentation/blob/032473449b53d9f02ec4619d4f5b84e6a81db362/bpf/generictracer/k_tracer.c#L370-L394

On CPU mismatch, fallback_buf is used but size is still set to m_buf->real_size (up to 8KB) and passed downstream.

https://github.com/open-telemetry/opentelemetry-ebpf-instrumentation/blob/032473449b53d9f02ec4619d4f5b84e6a81db362/bpf/generictracer/protocol_http.h#L412-L441

bytes_len (from m_buf->real_size) is used to read payload data from u_buf; if u_buf is the 256B fallback, this can over-read and leak memory into telemetry.

https://github.com/open-telemetry/opentelemetry-ebpf-instrumentation/blob/032473449b53d9f02ec4619d4f5b84e6a81db362/bpf/tpinjector/tpinjector.c#L192-L206

real_size is set up to 8192 bytes and stored with cpu_id; fallback_buf only contains 256 bytes.

PoC

Local testing with an AddressSanitizer user-space PoC reproduced the same class of size-mismatch over-read as the vulnerable fallback-buffer path. That result is sufficient to ground the advisory in a fresh local reproduction even though the exact end-to-end eBPF path still depends on host BPF capabilities.

To reproduce the validated behavior locally:

  1. create a struct that models fallback_buf[256] and real_size
  2. populate only the 256-byte fallback buffer
  3. simulate the CPU mismatch path by using the fallback buffer as the source pointer while preserving a much larger real_size
  4. perform a read of real_size bytes from that 256-byte backing store under ASan

An equivalent reproducer is:

// save as /tmp/poc_msgbuf_oob.c
#include <stdint.h>
#include <stdio.h>
#include <string.h>

struct msg_buffer {
  unsigned char fallback_buf[256];
  uint16_t pos;
  uint16_t real_size;
  uint32_t cpu_id;
};

int main(void) {
  struct msg_buffer m = {0};
  unsigned char sink[8192];

  memset(m.fallback_buf, 'A', sizeof(m.fallback_buf));
  m.real_size = 4096;

  memcpy(sink, m.fallback_buf, m.real_size);
  printf("copied %u bytes from a 256-byte fallback buffer\n", m.real_size);
  return 0;
}

Compile and run with ASan:

cc -fsanitize=address -O1 -g -o /tmp/poc_msgbuf_oob /tmp/poc_msgbuf_oob.c
ASAN_OPTIONS=abort_on_error=1 /tmp/poc_msgbuf_oob

Expected result:

AddressSanitizer: heap-buffer-overflow or stack-buffer-overflow

That user-space PoC matches the size-mismatch condition in the vulnerable code path, even though the exact end-to-end eBPF runtime path still requires host BPF attach/load capability.

Impact

This is a confidentiality issue in the HTTP tracing path. The vulnerable read occurs in OBI's local fallback-buffer handling when context propagation is enabled, the tpinjector sock_msg path is active, HTTP large-buffer capture is configured with a non-zero size, and a CPU mismatch occurs between producer and consumer contexts. Under those conditions, OBI can over-read from the fallback buffer and export unrelated memory through telemetry.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

OpenTelemetry eBPF Instrumentation (OBI) uses a 256-byte fallback buffer for per-CPU message buffers but preserves the original up-to-8KB payload size, enabling an out-of-bounds read that leaks kernel memory into telemetry.

Vulnerability

In the OpenTelemetry eBPF Instrumentation (OBI) project, the per-CPU message-buffer mechanism uses an 8KB buffer (msg_buffer_mem) with a 256-byte fallback_buf as a safety net for CPU mismatches ([1]). The k_kprobes_http2_buf_size constant is set to 256 bytes, matching the fallback buffer size, but the payload real_size can be set to values up to 8192 bytes ([1], [3]). When a CPU migration occurs, the code copies data into the fallback_buf but retains the original real_size (up to 8KB) and passes that oversized length downstream to protocol parsing functions ([1], [3]). This size mismatch affects OBI versions prior to the yet-unreleased fix; affected versions include all those based on commit 03247344 (the repository state at the time of disclosure).

Exploitation

An attacker must be able to trigger a CPU migration during eBPF instrumentation of HTTP/2 traffic when the per-CPU buffer is in use. No special authentication is required, as the instrumentation runs in kernel context and captures user-space telemetry. The attacker does not need direct write access; it is sufficient to cause the instrumented process to experience a CPU rebalance during the window between buffer allocation and consumption. The vulnerable code path is reachable when the eBPF kprobe encounters a CPU mismatch and falls back to the 256-byte fallback_buf. The downstream protocol parser then reads real_size bytes (up to 8KB) from the much smaller fallback buffer, resulting in an out-of-bounds read of adjacent kernel memory.

Impact

Successful exploitation allows an attacker to read sensitive kernel memory contents (e.g., cryptographic keys, passwords, or other telemetry from other processes) that are adjacent to the fallback_buf in the eBPF map. This information disclosure is then transmitted as part of the instrumentation's telemetry output, potentially exfiltrating secrets without leaving traces in system logs. The compromise scope is limited to data that can be read out-of-bounds; there is no evidence of write primitives or remote code execution. The impact is high for confidentiality, while integrity and availability are not directly affected.

Mitigation

As of the publication date (2026-05-18), no fixed version has been released. The project is in development (v0) and users should pin to a specific semver release rather than using latest ([2]). The vendor has acknowledged the vulnerability in GHSA-r6c9-g6q5-qrf9 ([1], [3]) and a patch is expected. Until a fix is available, restrict the use of OBI to trusted environments where CPU migrations can be controlled, or disable HTTP/2 instrumentation if the telemetry is not critical. This CVE is not listed in CISA's Known Exploited Vulnerabilities (KEV) catalog as of publication.

References
  1. CPU-mismatch fallback uses 256-byte buffer with 8KB size
  2. GitHub - open-telemetry/opentelemetry-ebpf-instrumentation
  3. CVE-2026-45681 - GitHub Advisory Database

AI Insight generated on May 21, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

2

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

2

News mentions

0

No linked articles in our index yet.