[CVE-2020-27194] Linux kernel: eBPF verifier bug in `or` binary operation tracking function leads to LPE
Posted: Tue Jan 14, 2025 4:44 am
CVE-2020-27194 is a eBPF verifier bug that allows an unprivileged attacker to create BPF socket filter programs that can read and write Out of Bounds, trough which an arbitrary kernel read write can be achieved.
https://hackerone.com/reports/1010340
https://hackerone.com/reports/1010340