vulnerability
Huawei EulerOS: CVE-2021-3444: kernel security update
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:L/Au:N/C:P/I:P/A:P) | 2021-03-23 | 2021-08-10 | 2021-08-10 |
Severity
5
CVSS
(AV:L/AC:L/Au:N/C:P/I:P/A:P)
Published
2021-03-23
Added
2021-08-10
Modified
2021-08-10
Description
The bpf verifier in the Linux kernel did not properly handle mod32 destination register truncation when the source register was known to be 0. A local attacker with the ability to load bpf programs could use this gain out-of-bounds reads in kernel memory leading to information disclosure (kernel memory), and possibly out-of-bounds writes that could potentially lead to code execution. This issue was addressed in the upstream kernel in commit 9b00f1b78809 ("bpf: Fix truncation handling for mod32 dst reg wrt zero") and in Linux stable kernels 5.11.2, 5.10.19, and 5.4.101.
Solution(s)
huawei-euleros-2_0_sp9-upgrade-kernelhuawei-euleros-2_0_sp9-upgrade-kernel-toolshuawei-euleros-2_0_sp9-upgrade-kernel-tools-libshuawei-euleros-2_0_sp9-upgrade-python3-perf
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.