CVE-2026-10722 | cilium ebpf up to 0.21.0 LoadCollectionSpec/LoadCollectionSpecFromReader btf/btf.go loadRawSpec offset integer overflow (Issue 2019 / EUVD-2026-34082)
A vulnerability, which was classified as problematic, was found in cilium ebpf up to 0.21.0. This affects the function loadRawSpec of the file btf/btf.go of the component LoadCollectionSpec/LoadCollectionSpecFromReader. Such manipulation of the argument offset leads to integer overflow.
This vulnerability is referenced as CVE-2026-10722. The attack can only be performed from a local environment. Furthermore, an exploit is available.
A patch should be applied to remediate this issue.