Lucene search

K

MitreCVELIST:CVE-2021-38300

HistorySep 20, 2021 - 5:25 a.m.

CVE-2021-38300

2021-09-2005:25:30

mitre

www.cve.org

1

7.8 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

45.2%

arch/mips/net/bpf_jit.c in the Linux kernel before 5.4.10 can generate undesirable machine code when transforming unprivileged cBPF programs, allowing execution of arbitrary code within the kernel context. This occurs because conditional branches can exceed the 128 KB limit of the MIPS architecture.

References

www.openwall.com/lists/oss-security/2021/09/15/5

cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.14.10

git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=37cb28ec7d3a36a5bace7063a3dba633ab110f8b

lists.debian.org/debian-lts-announce/2022/03/msg00012.html

security.netapp.com/advisory/ntap-20211008-0003/

www.debian.org/security/2022/dsa-5096

7.8 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

45.2%

Related for CVELIST:CVE-2021-38300

redhatcve1 nvd1 debiancve1 f51 ubuntucve1 cve1 prion1 cbl_mariner2 nessus8 amazon1 openvas7 osv2 debian2