vulnerability

Amazon Linux 2023: CVE-2021-36086: Medium priority package update for libsepol

Try Surface Command
Back to search
Severity
2
CVSS
(AV:L/AC:L/Au:S/C:N/I:N/A:P)
Published
2021-04-19
Added
2025-02-17
Modified
2025-02-17

Description

The CIL compiler in SELinux 3.2 has a use-after-free in cil_reset_classpermission (called from cil_reset_classperms_set and cil_reset_classperms_list).

Solution(s)

amazon-linux-2023-upgrade-libsepolamazon-linux-2023-upgrade-libsepol-debuginfoamazon-linux-2023-upgrade-libsepol-debugsourceamazon-linux-2023-upgrade-libsepol-develamazon-linux-2023-upgrade-libsepol-staticamazon-linux-2023-upgrade-libsepol-utilsamazon-linux-2023-upgrade-libsepol-utils-debuginfo

References

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today