Published: 27/05/2021 Updated: 25/03/2024

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 641

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

kernel/bpf/verifier.c in the Linux kernel up to and including 5.12.7 enforces incorrect limits for pointer arithmetic operations, aka CID-bb01a1bba579. This can be abused to perform out-of-bounds reads and writes in kernel memory, leading to local privilege escalation to root. In particular, there is a corner case where the off reg causes a masking direction change, which then results in an incorrect final aux->alu_limit.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel
fedoraproject fedora 33
fedoraproject fedora 34
netapp cloud backup -
netapp solidfire \\& hci management node -
netapp solidfire baseboard management controller -
netapp h300s_firmware -
netapp h500s_firmware -
netapp h300e_firmware -
netapp h500e_firmware -
netapp h700e_firmware -
netapp h410s_firmware -
netapp h700s_firmware -

A denial-of-service (DoS) flaw was identified in the Linux kernel due to an incorrect memory barrier in xt_replace_table in net/netfilter/x_tablesc in the netfilter subsystem (CVE-2021-29650) A flaw was found in kernel/bpf/verifierc in BPF in the Linux kernel An incorrect limit is enforced for pointer arithmetic operations which can be abused ...

ALAS2LIVEPATCH-2021-054 Amazon Linux 2 Security Advisory: ALASLIVEPATCH-2021-054 Advisory Release Date: 2021-07-14 22:04 P ...

A flaw was found in kernel/bpf/verifierc in BPF in the Linux kernel An incorrect limit is enforced for pointer arithmetic operations which can be abused to perform out-of-bounds reads and writes in kernel memory, leading to local privilege escalation The highest threat from this vulnerability is to data confidentiality and integrity as well as s ...

A flaw was found in the Linux kernel Incorrect limits are enforced for pointer arithmetic operations which can be abused to perform out-of-bounds reads and writes in kernel memory, leading to local privilege escalation to root The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability ...

An issue has been discovered in the Linux kernel that can be abused by unprivileged local users to escalate privileges The issue is with how the BPF verifier computes limits to enforce on the pointer arithmetic operations in BPF programs In a particular scenario these limits are computed incorrectly When any incorrect limits are enforced, perfor ...

CWE-787 https://www.openwall.com/lists/oss-security/2021/05/27/1 https://security.netapp.com/advisory/ntap-20210706-0004/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JJCABL43FT3FKRX5DBPZG25FNKR6CEK4/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7LR3OKKPHIBGOMHN476CMLW2T7UG53QX/https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=3d0220f6861d713213b015b582e9f21e5b28d2e0 https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=bb01a1bba579b4b1c5566af24d95f1767859771e https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=a7036191277f9fa68d92f2071ddc38c09b1e5ee5 https://nvd.nist.gov https://alas.aws.amazon.com/ALAS-2021-1516.html

CVE-2021-33200

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect