Most recent sightings.

https://vulnerability.circl.lu/sightings/feed Most recent sightings. 2026-06-06T06:47:18.542673+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/419ecb27-8e09-48b7-bf5b-ca3989c11065/export 419ecb27-8e09-48b7-bf5b-ca3989c11065 2026-06-06T06:47:19.223852+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "419ecb27-8e09-48b7-bf5b-ca3989c11065", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42063", "type": "published-proof-of-concept", "source": "https://t.me/cvedetector/1884", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-42063 - Linux Kernel BPF Uninitialized Memory Use\", \n \"Content\": \"CVE ID : CVE-2024-42063 \nPublished : July 29, 2024, 4:15 p.m. | 26\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved: \n \nbpf: Mark bpf prog stack with kmsan_unposion_memory in interpreter mode \n \nsyzbot reported uninit memory usages during map_{lookup,delete}_elem. \n \n========== \nBUG: KMSAN: uninit-value in __dev_map_lookup_elem kernel/bpf/devmap.c:441 [inline] \nBUG: KMSAN: uninit-value in dev_map_lookup_elem+0xf3/0x170 kernel/bpf/devmap.c:796 \n__dev_map_lookup_elem kernel/bpf/devmap.c:441 [inline] \ndev_map_lookup_elem+0xf3/0x170 kernel/bpf/devmap.c:796 \n____bpf_map_lookup_elem kernel/bpf/helpers.c:42 [inline] \nbpf_map_lookup_elem+0x5c/0x80 kernel/bpf/helpers.c:38 \n___bpf_prog_run+0x13fe/0xe0f0 kernel/bpf/core.c:1997 \n__bpf_prog_run256+0xb5/0xe0 kernel/bpf/core.c:2237 \n========== \n \nThe reproducer should be in the interpreter mode. \n \nThe C reproducer is trying to run the following bpf prog: \n \n 0: (18) r0 = 0x0 \n 2: (18) r1 = map[id:49] \n 4: (b7) r8 = 16777216 \n 5: (7b) *(u64 *)(r10 -8) = r8 \n 6: (bf) r2 = r10 \n 7: (07) r2 += -229 \n ^^^^^^^^^^ \n \n 8: (b7) r3 = 8 \n 9: (b7) r4 = 0 \n 10: (85) call dev_map_lookup_elem#1543472 \n 11: (95) exit \n \nIt is due to the \"void *key\" (r2) passed to the helper. bpf allows uninit \nstack memory access for bpf prog with the right privileges. This patch \nuses kmsan_unpoison_memory() to mark the stack as initialized. \n \nThis should address different syzbot reports on the uninit \"void *key\" \nargument during map_{lookup,delete}_elem. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"29 Jul 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-29T18:48:40.000000Z"} 2024-07-29T18:48:40+00:00 https://vulnerability.circl.lu/sighting/63e3a52d-8a4d-4166-b874-d96051457f0c/export 63e3a52d-8a4d-4166-b874-d96051457f0c 2026-06-06T06:47:19.221991+00:00 Alexandre Dulaunoy https://cve.circl.lu/user/adulau {"uuid": "63e3a52d-8a4d-4166-b874-d96051457f0c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2024-42063", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8", "content": "", "creation_timestamp": "2025-12-03T14:14:49.267740Z"} 2025-12-03T14:14:49.267740+00:00