CVE-2021-3444
CVSS v3.1
7.8 (High)
CVSS v2.0
4.6 (Medium)
EPSS
0.04 % (10th)
Affected Products
3
Advisories
27
The bpf verifier in the Linux kernel did not properly handle mod32 destination register truncation when the source register was known to be 0. A local attacker with the ability to load bpf programs could use this gain out-of-bounds reads in kernel memory leading to information disclosure (kernel memory), and possibly out-of-bounds writes that could potentially lead to code execution. This issue was addressed in the upstream kernel in commit 9b00f1b78809 ("bpf: Fix truncation handling for mod32 dst reg wrt zero") and in Linux stable kernels 5.11.2, 5.10.19, and 5.4.101.
- CVE Status
- PUBLISHED
- CNA
- Canonical Ltd.
- Published Date
-
2021-03-23 18:15:13
(3 years ago) - Updated Date
-
2021-12-02 19:37:08
(2 years ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Configuration #3
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...