Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2021-29154

An issue has been discovered in the Linux kernel that can be abused by unprivileged local users to escalate privileges. The issue is with how BPF JIT compilers for some architectures compute branch displacements when generating machine code. This can be abused to craft anomalous machine code and execute it in the Kernel mode, where the control flow is hijacked to execute unsafe code.

Source

Severity Medium

Remote No

Type Privilege escalation

Description

An issue has been discovered in the Linux kernel that can be abused by unprivileged local users to escalate privileges. The issue is with how BPF JIT compilers for some architectures compute branch displacements when generating machine code. This can be abused to craft anomalous machine code and execute it in the Kernel mode, where the control flow is hijacked to execute unsafe code.

AVG-1785 linux-zen 5.11.12.zen1-1 Medium Vulnerable

AVG-1784 linux-hardened 5.11.11.hardened1-1 Medium Vulnerable

AVG-1783 linux 5.11.12.arch4-1 Medium Vulnerable

AVG-1741 linux-lts 5.10.28-1 Medium Vulnerable

https://www.openwall.com/lists/oss-security/2021/04/08/1
https://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf.git/patch/?id=e4d4d456436bfb2fe412ee2cd489f7658449b098
https://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf.git/patch/?id=26f55a59dc65ff77cd1c4b37991e26497fc68049

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

Vulmon Search

About

Products

Connect