PT-2021-4809 · Linux+3 · Linux Kernel+3

Ga_Ryo

+1

·

Published

2021-08-23

·

Updated

2023-08-14

·

CVE-2021-34866

CVSS v3.1

8.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux Kernel version 5.14-rc3
Description This issue allows local attackers to escalate privileges on affected installations. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this issue. The specific flaw exists within the handling of eBPF programs, resulting from the lack of proper validation of user-supplied eBPF programs, which can result in a type confusion condition. An attacker can leverage this issue to escalate privileges and execute arbitrary code in the context of the kernel.
Recommendations For Linux Kernel version 5.14-rc3, consider disabling the handling of eBPF programs as a temporary workaround until a patch is available. Restrict access to the eBPF subsystem to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

Fix

Type Confusion

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-843CWE-697

Related Identifiers

ALT-PU-2021-2723
ALT-PU-2021-2726
ALT-PU-2021-2741
ALT-PU-2021-2748
ALT-PU-2021-2749
ALT-PU-2021-2750
ALT-PU-2021-2778
ALT-PU-2021-2901
ALT-PU-2021-2916
ALT-PU-2021-3000
ALT-PU-2021-3002
ALT-PU-2021-3007
ALT-PU-2021-3477
ALT-PU-2021-3563
ALT-PU-2021-3573
ALT-PU-2023-4894
BDU:2021-05536
CVE-2021-34866
OPENSUSE-SU-2021:3641-1
OPENSUSE-SU-2021:3675-1
OPENSUSE-SU-2021_3641-1
OPENSUSE-SU-2021_3655-1
OPENSUSE-SU-2021_3675-1
RHSA-2024:0724
SUSE-SU-2021:3641-1
SUSE-SU-2021:3642-1
SUSE-SU-2021:3675-1
SUSE-SU-2021:3718-1
SUSE-SU-2021:3738-1
SUSE-SU-2021:3742-1
SUSE-SU-2021_3718-1
SUSE-SU-2021_3738-1
SUSE-SU-2021_3742-1
ZDI-21-1148

Affected Products

Alt Linux
Astra Linux
Linux Kernel
Suse