PT-2021-6102 · Linux+5 · Linux Kernel+5

Kuee K1R0A

·

Published

2021-12-16

·

Updated

2023-08-14

·

CVE-2021-45402

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to v5.16-rc5
Description The issue is related to the check alu op() function in kernel/bpf/verifier.c, which did not properly update bounds while handling the mov32 instruction. This allows local users to obtain potentially sensitive address information, also referred to as a "pointer leak." The vulnerability is associated with a buffer overflow in memory, which can be exploited to gain unauthorized access to protected information.
Recommendations For Linux kernel versions prior to v5.16-rc5, consider disabling the check alu op() function as a temporary workaround until a patch is available. Restrict access to the kernel/bpf/verifier.c module to minimize the risk of exploitation. Avoid using the mov32 instruction in the affected kernel versions until the issue is resolved.

Exploit

Fix

Buffer Overflow

Exposure of Resource to Wrong Sphere

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-668

Related Identifiers

ALT-PU-2022-1175
ALT-PU-2022-1647
ALT-PU-2022-2155
ALT-PU-2023-1684
ALT-PU-2023-1741
ALT-PU-2023-1814
ALT-PU-2023-4894
AZL-8605
BDU:2022-00822
CVE-2021-45402
OPENSUSE-SU-2022:1039-1
OPENSUSE-SU-2022_1039-1
OPENSUSE-SU-2022_1163-1
OPENSUSE-SU-2022_2520-1
OPENSUSE-SU-2022_2615-1
SUSE-SU-2022:1038-1
SUSE-SU-2022:1039-1
SUSE-SU-2022:1163-1
SUSE-SU-2022:2520-1
SUSE-SU-2022:2615-1
USN-5337-1
USN-5368-1

Affected Products

Alt Linux
Astra Linux
Linuxmint
Linux Kernel
Suse
Ubuntu