Local Code Execution Vulnerability in Linux Kernel's eBPF Implementation
CVE-2021-3600

7.8HIGH

Key Information:

Vendor

The Linux Kernel Organization

Status
Linux
Vendor
CVE Published:
8 January 2024

What is CVE-2021-3600?

The eBPF implementation in the Linux kernel has a vulnerability related to the improper tracking of bounds information for 32-bit registers during division and modulus operations. A local attacker can exploit this flaw to potentially execute arbitrary code, posing a significant security risk. The flaw goes unnoticed in certain operations, which could allow for abnormal behavior or unauthorized access to sensitive operations within the kernel. Users and organizations running affected versions of the Linux kernel should ensure that they apply the latest patches to mitigate this risk.

Affected Version(s)

linux Linux 0 < 5.11

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3600
issue-tracking
https://ubuntu.com/security/notices/USN-5003-1
third-party-advisory
https://git.kernel.org/linus/e88b2c6e5a4d9ce30d75391e4d95...
issue-tracking

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

.