PT-2021-2489 · Linux+6 · Linux Kernel+6

Piotr Krysiuk

·

Published

2021-03-17

·

Updated

2023-05-17

·

CVE-2020-27170

CVSS v3.1

4.7

Medium

VectorAV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.11.8
Description: The issue is related to the Linux kernel's kernel/bpf/verifier.c file, which performs undesirable out-of-bounds speculation on pointer arithmetic. This can lead to side-channel attacks that defeat Spectre mitigations and obtain sensitive information from kernel memory. The issue affects pointer types that do not define a ptr limit.
Recommendations: For Linux kernel versions prior to 5.11.8, update to version 5.11.8 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive information and limiting the use of pointer types that do not define a ptr limit to minimize the risk of exploitation.

Fix

Side Channel Attack

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-203

Related Identifiers

ALT-PU-2021-1530
ALT-PU-2021-1540
ALT-PU-2021-1869
ALT-PU-2021-1888
ALT-PU-2021-1896
ALT-PU-2022-1240
ALT-PU-2022-1419
ALT-PU-2022-1421
ALT-PU-2023-1814
AZL-6525
BDU:2021-01865
CESA-2021_2314
CVE-2020-27170
DLA-2610-1
MGASA-2021-0151
MGASA-2021-0152
OESA-2021-1176
OPENSUSE-SU-2021:0532-1
OPENSUSE-SU-2021:0758-1
OPENSUSE-SU-2021:1975-1
OPENSUSE-SU-2021:1977-1
OPENSUSE-SU-2021_0532-1
OPENSUSE-SU-2021_0758-1
OPENSUSE-SU-2021_1975-1
OPENSUSE-SU-2021_1977-1
RHSA-2021:2314
RHSA-2021:2316
RHSA-2021_2314
RHSA-2021_2316
SUSE-SU-2021:1175-1
SUSE-SU-2021:1176-1
SUSE-SU-2021:1177-1
SUSE-SU-2021:1210-1
SUSE-SU-2021:1211-1
SUSE-SU-2021:1238-1
SUSE-SU-2021:1573-1
SUSE-SU-2021:1596-1
SUSE-SU-2021:1624-1
SUSE-SU-2021:1625-1
SUSE-SU-2021:1975-1
SUSE-SU-2021:1977-1
USN-4887-1
USN-4890-1

Affected Products

Alt Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Suse
Ubuntu