Buffer Overflow Vulnerability in libbpf Affected by Local Code Execution
CVE-2025-29481

6.2MEDIUM

Key Information:

Vendor: Linux Foundation
Status: libbpf
Vendor: CVE Published:; 7 April 2025

🔔 Create Linux Foundation Vulnerability Alert

What is CVE-2025-29481?

A buffer overflow vulnerability exists in libbpf version 1.5.0, which can be exploited by local attackers to execute arbitrary code. This issue occurs through improper handling of buffer sizes within the bpf_object__init_prog function. Attackers with access to the affected system can manipulate memory, potentially compromising the integrity of the system or executing malicious commands.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://github.com/lmarch2/poc/blob/main/libbpf/libbpf.md

CVSS V3.1

Score:

6.2

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 7, 2025
Vulnerability Reserved
Mar 11, 2025

JSON

Linux Foundation

What is CVE-2025-29481?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.