vulnerability

Red Hat: CVE-2021-3600: CVE-2021-3600 kernel: eBPF 32-bit source register truncation on div/mod (Multiple Advisories)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:L/Au:S/C:C/I:C/A:C)	Nov 9, 2021	Nov 10, 2021	Mar 27, 2026

Severity

CVSS

(AV:L/AC:L/Au:S/C:C/I:C/A:C)

Published

Nov 9, 2021

Added

Nov 10, 2021

Modified

Mar 27, 2026

Description

It was discovered that the eBPF implementation in the Linux kernel did not properly track bounds information for 32 bit registers when performing div and mod operations. A local attacker could use this to possibly execute arbitrary code.

Solutions

redhat-upgrade-kernelredhat-upgrade-kernel-rt

References

CWE-125
CWE-787
EUVD-EUVD-2021-26906
NVD-CVE-2021-3600
REDHAT-RHSA-2021:4140
REDHAT-RHSA-2021:4356
https://euvd.enisa.europa.eu/vulnerability/EUVD-2021-26906

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report