libbpf 0.6.0 and 0.6.1 has a heap-based buffer overflow (4 bytes) in bpfobjectopen (called from bpfobject_openmem and bpf-object-fuzzer.c).
{ "cpes": [ "cpe:2.3:a:libbpf_project:libbpf:0.6.0:*:*:*:*:*:*:*", "cpe:2.3:a:libbpf_project:libbpf:0.6.1:*:*:*:*:*:*:*" ], "severity": "Medium" }