CVE-2021-3490

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.13-rc4 Linux kernel versions 5.7-rc1 through 5.12.3 Linux kernel versions 5.10-rc1 through 5.10.36 Linux kernel versions 5.11 through 5.11.20

Description The eBPF ALU32 bounds tracking for bitwise ops (AND, OR and XOR) in the Linux kernel did not properly update 32-bit bounds, which could be turned into out of bounds reads and writes in the Linux kernel and therefore, arbitrary code execution. This issue is related to a buffer overflow in memory, allowing an attacker to execute arbitrary code in the context of the kernel.

Recommendations For Linux kernel versions prior to 5.13-rc4, update to version 5.13-rc4 or later. For Linux kernel versions 5.7-rc1 through 5.12.3, update to version 5.12.4 or later. For Linux kernel versions 5.10-rc1 through 5.10.36, update to version 5.10.37 or later. For Linux kernel versions 5.11 through 5.11.20, update to version 5.11.21 or later. As a temporary workaround, consider disabling the eBPF functionality until a patch is available.