RHSA-2024:8830: Low: bpftrace security update

First published: Tue Nov 05 2024(Updated: )

BPFtrace is a high-level tracing language for Linux enhanced Berkeley Packet Filter (eBPF) available in recent Linux kernels (4.x). BPFtrace uses LLVM as a backend to compile scripts to BPF-bytecode and makes use of BCC for interacting with the Linux BPF system, as well as existing Linux tracing capabilities: kernel dynamic tracing (kprobes), user-level dynamic tracing (uprobes), and tracepoints. The BPFtrace language is inspired by awk and C, and predecessor tracers such as DTrace and SystemTap<br>Security Fix(es):<br><li> bpftrace: unprivileged users can force loading of compromised linux headers (CVE-2024-2313)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• collector/redhat-errata-latest
• source/Red Hat
• anchor-id/RHSA-2024:8830
• agent/software-canonical-lookup
• agent/severity
• agent/type
• agent/remedy
• agent/title
• agent/references
• agent/softwarecombine
• agent/last-modified-date
• agent/tags
• collector/redhat-errata
• agent/description
• agent/event
• agent/first-publish-date
• vendor/red hat
• canonical/red hat red hat enterprise linux for x86_64
• canonical/red hat red hat enterprise linux for arm 64
• canonical/red hat red hat enterprise linux for power, little endian
• canonical/red hat red hat enterprise linux for ibm z systems
• package-manager/redhat