CVE-2026-21996

Summary

An unprivileged attacker can reliably trigger a crash of the dtrace process with a malicious ELF binary due to an integer Divide-by-Zero in Pbuild_file_symtab()

Affected Software

VendorProductVersion RangeStatus
Oracle CorporationOracle Linux8affected
Oracle CorporationOracle Linux9affected
Oracle CorporationOracle Linux10affected

Weaknesses

  • An unprivileged attacker can reliably trigger a crash of the dtrace process with a malicious ELF binary due to an integer Divide-by-Zero in Pbuild_file_symtab()

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References