PT-2021-4223 · Linux+7 · Linux Kernel+7
Piotr Krysiuk
·
Published
2021-05-25
·
Updated
2024-03-25
·
CVE-2021-33200
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel versions through 5.12.7
Description
The issue is related to a buffer overflow in the kernel/bpf/verifier.c component of the Linux kernel, allowing an attacker to perform out-of-bounds reads and writes in kernel memory. This can lead to local privilege escalation to the root level. A specific corner case involves the off reg causing a masking direction change, resulting in an incorrect final aux->alu limit.
Recommendations
For Linux kernel versions through 5.12.7, update to a version later than 5.12.7 to resolve the issue.
At the moment, there is no information about additional mitigation measures for this specific vulnerability.
Fix
LPE
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Almalinux
Centos
Linuxmint
Linux Kernel
Red Hat
Suse
Ubuntu