SA-2025-092 - eBPF Verifier Branch Pruning Linux K... - Extreme Networks

Summary

Incorrect verifier pruning in BPF in some versions of Linux Kernel may lead to unsafe code paths being incorrectly marked as safe, resulting in arbitrary read/write in kernel memory, lateral privilege escalation, and container escape.

Products Potentially Affected

OS/Product	Exposure
Switch Engine (EXOS)	Yes

Repair Recommendations

Switch Engine (EXOS):

Fixed in 31.7.4.2-patch1-6 and later.
Fixed in 33.5.1 and later.
Fixed in 32.7.3.15-patch1-33 and later.

Please see the full security advisory notice here for more details and future updates.

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

EXOS 31.4.1.5 is Now Available!

Extreme Networks Stacking Tool Supports Extreme 4000 series models!

ExtremeXOS 32.6.3 is Now Available!

GTM-P2G8KFN

Extreme Networks

SA-2025-092 - eBPF Verifier Branch Pruning Linux Kernel (CVE-2023-2163)

EXOS 31.4.1.5 is Now Available!

Extreme Networks Stacking Tool Supports Extreme 4000 series models!

ExtremeXOS 32.6.3 is Now Available!