Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
641
VMScore

CVE-2021-3489

Published: 04/06/2021 Updated: 14/09/2021
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 641
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Linux

Vulnerability Summary

The eBPF RINGBUF bpf_ringbuf_reserve() function in the Linux kernel did not check that the allocated size was smaller than the ringbuf size, allowing an malicious user to perform out-of-bounds writes within the kernel and therefore, arbitrary code execution. This issue was fixed via commit 4b81ccebaeee ("bpf, ringbuf: Deny reserve of buffers larger than ringbuf") (v5.13-rc4) and backported to the stable kernels in v5.12.4, v5.11.21, and v5.10.37. It was introduced via 457f44363a88 ("bpf: Implement BPF ring buffer and verifier support for it") (v5.8-rc1).

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

linux linux kernel

linux linux kernel 5.13

canonical ubuntu linux 20.04

canonical ubuntu linux 20.10

canonical ubuntu linux 21.04

Vendor Advisories

Red Hat: CVE-2021-3489
A flaw was found in the Linux kernel It was discovered that eBPF RINGBUF bpf_ringbuf_reserve did not check that the allocated size was smaller than the ringbuf size The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability ...
Arch Linux Issues:
A security issue was found in the Linux kernel It was discovered that eBPF RINGBUF bpf_ringbuf_reserve did not check that the allocated size was smaller than the ringbuf size, leading to an out-of-bounds write ...
Amazon Linux 2: ALAS2KERNEL-5.10-2022-001
A use-after-free flaw was found in the Linux kernel's NFC LLCP protocol implementation in the way the user performs manipulation with an unknown input for the llcp_sock_bind() function This flaw allows a local user to crash or escalate their privileges on the system (CVE-2020-25670) A use-after-free flaw was found in the Linux kernel's NFC LLCP p ...
Amazon Linux 2: ALAS2KERNEL-5.10-2022-002
A flaw was found in the Linux kernels implementation of wifi fragmentation handling An attacker with the ability to transmit within the wireless transmission range of an access point can abuse a flaw where previous contents of wifi fragments can be unintentionally transmitted to another device (CVE-2020-24586) A flaw was found in the Linux kernel ...

Github Repositories

https://github.com/yifengyou/learn-ebpf

eBPF学习

ebpf学习笔记 仓库介绍 Something I hope you know before go into the coding~ First, please watch or star this repo, I'll be more happy if you follow me Bug report, questions and discussion are welcome, you can post an issue or pull a request 目录 基础知识 clang与llvm BPF内核实现 BPF指令集 JIT即时编译 llvm

References

CWE-787https://www.zerodayinitiative.com/advisories/ZDI-21-590/https://ubuntu.com/security/notices/USN-4949-1https://ubuntu.com/security/notices/USN-4950-1https://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf.git/commit/?id=4b81ccebaeee885ab1aa1438133f2991e3a2b6eahttps://www.openwall.com/lists/oss-security/2021/05/11/10https://security.netapp.com/advisory/ntap-20210716-0004/https://nvd.nist.govhttps://github.com/yifengyou/learn-ebpfhttps://access.redhat.com/security/cve/cve-2021-3489https://www.zerodayinitiative.com/advisories/ZDI-21-590/
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654CVE-2024-2757authentication bypassCVE-2024-3194CVE-2024-33640CVE-2024-21111dosinsecure direct object referenceCVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook