This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SA-2025-092 - eBPF Verifier Branch Pruning Linux Kernel (CVE-2023-2163)

SamPirok
Community Manager Community Manager
Community Manager
3 weeks ago

Summary

Incorrect verifier pruning in BPF in some versions of Linux Kernel may lead to unsafe code paths being incorrectly marked as safe, resulting in arbitrary read/write in kernel memory, lateral privilege escalation, and container escape.

 

Products Potentially Affected

OS/Product

Exposure

Switch Engine (EXOS)

Yes

 

Repair Recommendations

Switch Engine (EXOS):

  • Fixed in 31.7.4.2-patch1-6 or later. 
  • Fixed in 33.5.1 or later. 

 

Please see the full security advisory article here for more details and future updates. 

 

0 Kudos
1 Comment
Jon_P
New Contributor III
3 weeks ago
3 weeks ago

Please can you clarify which (if any) 32.x EXOS versions are affected by this?

Popular Articles
GTM-P2G8KFN