PT-2021-3369 · Linux+7 · Linux Kernel+7

Benedict Schlueter

+1

·

Published

2021-04-30

·

Updated

2023-05-17

·

CVE-2021-31829

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions Linux kernel versions through 5.12.1
Description The issue is related to the Linux kernel's BPF subsystem, which has weaknesses in its authorization mechanism. This can allow an attacker to gain unauthorized access to protected information. Specifically, the kernel/bpf/verifier.c in the Linux kernel performs undesirable speculative loads, leading to the disclosure of stack content via side-channel attacks. The BPF stack area is not protected against speculative loads, and it can contain uninitialized data that might represent sensitive information previously operated on by the kernel.
Recommendations For Linux kernel versions through 5.12.1, consider updating to a version that addresses the issue with speculative loads in the BPF subsystem to prevent unauthorized access to sensitive information. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Incorrect Authorization

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-863CWE-200

Related Identifiers

ALSA-2021:4356
ALT-PU-2021-1833
ALT-PU-2021-1888
ALT-PU-2021-1896
ALT-PU-2021-1990
ALT-PU-2021-3481
ALT-PU-2022-1240
ALT-PU-2022-1419
ALT-PU-2022-1421
ALT-PU-2023-1814
AZL-6557
BDU:2021-03220
CESA-2021_4140
CESA-2021_4356
CVE-2021-31829
DLA-2690-1
MGASA-2021-0214
MGASA-2021-0215
OESA-2021-1176
RHSA-2021:4140
RHSA-2021:4356
RHSA-2021_4140
RHSA-2021_4356
USN-4983-1
USN-4997-1
USN-4997-2
USN-4999-1
USN-5000-1
USN-5000-2
USN-5018-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Ubuntu