Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
2.1
CVSSv2

CVE-2021-36084

Published: 01/07/2021 Updated: 07/11/2023
CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9
CVSS v3 Base Score: 3.3 | Impact Score: 1.4 | Exploitability Score: 1.8
VMScore: 189
Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P
Subscribe to Selinux Project

Vulnerability Summary

It exists that libsepol incorrectly handled memory when handling policies. An attacker could possibly use this issue to cause a crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affects Ubuntu 18.04 LTS, Ubuntu 20.04 LTS and Ubuntu 21.10. (CVE-2021-36086)

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

selinux project selinux 3.2

fedoraproject fedora 35

Vendor Advisories

Debian CVElist Bug Report Logs: libsepol: CVE-2021-36084 CVE-2021-36085 CVE-2021-36086 CVE-2021-36087
Debian Bug report logs - #990526 libsepol: CVE-2021-36084 CVE-2021-36085 CVE-2021-36086 CVE-2021-36087 Package: src:libsepol; Maintainer for src:libsepol is Debian SELinux maintainers <selinux-devel@listsaliothdebianorg>; Reported by: Moritz Mühlenhoff <jmm@inutilorg> Date: Thu, 1 Jul 2021 11:30:02 UTC Severity ...
Ubuntu Security Notice: USN-5391-1: libsepol vulnerabilities
Several security issues were fixed in libsepol ...
Amazon Linux 2: ALAS2-2023-2307
The CIL compiler in SELinux 32 has a use-after-free in __cil_verify_classperms (called from __cil_verify_classpermission and __cil_pre_verify_helper) (CVE-2021-36084) The CIL compiler in SELinux 32 has a use-after-free in __cil_verify_classperms (called from __verify_map_perm_classperms and hashtab_map) (CVE-2021-36085) The CIL compiler in SELi ...
Amazon Linux 2: ALASSELINUX-NG-2023-001
The CIL compiler in SELinux 32 has a use-after-free in __cil_verify_classperms (called from __cil_verify_classpermission and __cil_pre_verify_helper) (CVE-2021-36084) The CIL compiler in SELinux 32 has a use-after-free in __cil_verify_classperms (called from __verify_map_perm_classperms and hashtab_map) (CVE-2021-36085) The CIL compiler in SELi ...
Red Hat: Important: OpenShift Virtualization 4.11.0 Images security and bug fix update
Synopsis Important: OpenShift Virtualization 4110 Images security and bug fix update Type/Severity Security Advisory: Important Topic Red Hat OpenShift Virtualization release 4110 is now available with updates to packages and images that fix several bugs and add enhancementsRed Hat Product Security has rated this update as having a secur ...
Red Hat: Moderate: Gatekeeper Operator v0.2 security updates and bug fixes
Synopsis Moderate: Gatekeeper Operator v02 security updates and bug fixes Type/Severity Security Advisory: Moderate Topic Gatekeeper Operator v02Red Hat Product Security has rated this update as having a security impactof Moderate A Common Vulnerability Scoring System (CVSS) base score,which gives a detailed severity rating, is available f ...
Red Hat: Important: Red Hat OpenShift GitOps security update
Synopsis Important: Red Hat OpenShift GitOps security update Type/Severity Security Advisory: Important Topic An update for openshift-gitops-applicationset-container, openshift-gitops-container, openshift-gitops-kam-delivery-container, and openshift-gitops-operator-container is now available for Red Hat OpenShift GitOps 12 (GitOps v122)Re ...
Red Hat: Moderate: Release of OpenShift Serverless 1.20.0
Synopsis Moderate: Release of OpenShift Serverless 1200 Type/Severity Security Advisory: Moderate Topic Release of OpenShift Serverless 1200Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available fo ...
Red Hat: Important: OpenShift Container Platform 4.11.0 bug fix and security update
Synopsis Important: OpenShift Container Platform 4110 bug fix and security update Type/Severity Security Advisory: Important Topic Red Hat OpenShift Container Platform release 4110 is now available withupdates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift Co ...
Red Hat: Moderate: Migration Toolkit for Containers (MTC) 1.7.3 security and bug fix update
Synopsis Moderate: Migration Toolkit for Containers (MTC) 173 security and bug fix update Type/Severity Security Advisory: Moderate Topic The Migration Toolkit for Containers (MTC) 173 is now availableRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base ...
Red Hat: Moderate: Red Hat OpenShift distributed tracing 2.1.0 security update
Synopsis Moderate: Red Hat OpenShift distributed tracing 210 security update Type/Severity Security Advisory: Moderate Topic An update is now available for Red Hat Openshit distributed tracing 21Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, ...
Red Hat: Moderate: OpenShift Container Platform 4.11.0 extras and security update
Synopsis Moderate: OpenShift Container Platform 4110 extras and security update Type/Severity Security Advisory: Moderate Topic Red Hat OpenShift Container Platform release 4110 is now available withupdates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift Conta ...
Red Hat: Important: Release of containers for OSP 16.2 director operator tech preview
Synopsis Important: Release of containers for OSP 162 director operator tech preview Type/Severity Security Advisory: Important Topic Red Hat OpenStack Platform 162 (Train) director Operator containers areavailable for technology preview Description Release osp-director-operator imagesSecurity Fix(es): golang: net/http: limit growth of h ...
Red Hat: Important: OpenShift Container Platform 4.11.45 bug fix and security update
Synopsis Important: OpenShift Container Platform 41145 bug fix and security update Type/Severity Security Advisory: Important Topic Red Hat OpenShift Container Platform release 41145 is now available with updates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift ...
Red Hat: Moderate: Red Hat Advanced Cluster Management 2.2.11 security updates and bug fixes
Synopsis Moderate: Red Hat Advanced Cluster Management 2211 security updates and bug fixes Type/Severity Security Advisory: Moderate Topic Red Hat Advanced Cluster Management for Kubernetes 2211 General Availability release images, which provide one or more container updates and bug fixesRed Hat Product Security has rated this update as ...
Red Hat: Important: Migration Toolkit for Containers (MTC) 1.7.4 security and bug fix update
Synopsis Important: Migration Toolkit for Containers (MTC) 174 security and bug fix update Type/Severity Security Advisory: Important Topic The Migration Toolkit for Containers (MTC) 174 is now availableRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) ba ...
Red Hat: Moderate: Migration Toolkit for Containers (MTC) 1.5.4 security update
Synopsis Moderate: Migration Toolkit for Containers (MTC) 154 security update Type/Severity Security Advisory: Moderate Topic The Migration Toolkit for Containers (MTC) 154 is now availableRed Hat Product Security has rated this update as having a security impactof Moderate A Common Vulnerability Scoring System (CVSS) base score, whichg ...
Amazon Linux 2022: ALAS2022-2022-208
The CIL compiler in SELinux 32 has a use-after-free in __cil_verify_classperms (called from __cil_verify_classpermission and __cil_pre_verify_helper) (CVE-2021-36084) The CIL compiler in SELinux 32 has a use-after-free in __cil_verify_classperms (called from __verify_map_perm_classperms and hashtab_map) (CVE-2021-36085) The CIL compiler in SELi ...
Amazon Linux 2022: ALAS2022-2022-170
The CIL compiler in SELinux 32 has a use-after-free in __cil_verify_classperms (called from __cil_verify_classpermission and __cil_pre_verify_helper) (CVE-2021-36084) The CIL compiler in SELinux 32 has a use-after-free in __cil_verify_classperms (called from __verify_map_perm_classperms and hashtab_map) (CVE-2021-36085) The CIL compiler in SELi ...
Amazon Linux 2022: ALAS2022-2022-030
The CIL compiler in SELinux 32 has a use-after-free in __cil_verify_classperms (called from __cil_verify_classpermission and __cil_pre_verify_helper) (CVE-2021-36084) The CIL compiler in SELinux 32 has a use-after-free in __cil_verify_classperms (called from __verify_map_perm_classperms and hashtab_map) (CVE-2021-36085) The CIL compiler in SELi ...

ICS Advisories

https://ics-cert.us-cert.gov/advisories/fd87a3fc00e025fdc5034360097d2bdf
Critical Infrastructure Sectors: Critical Manufacturing

References

CWE-416https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=31065https://github.com/google/oss-fuzz-vulns/blob/main/vulns/selinux/OSV-2021-417.yamlhttps://github.com/SELinuxProject/selinux/commit/f34d3d30c8325e4847a6b696fe7a3936a8a361f3https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U7ZYR3PIJ75N6U2IONJWCKZ5L2NKJTGR/https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990526https://ubuntu.com/security/notices/USN-5391-1https://nvd.nist.govhttps://www.cisa.gov/news-events/ics-advisories/icsa-23-348-10
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38002CVE-2006-4304CVE-2024-4336CVE-2024-33437CVE-2024-4340CVE-2024-27956privilegeinsecure direct object referenceXSSitem search icon">CVE-2024-25938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook