Lucene search
F5F5:K33484369HistoryFeb 07, 2022 - 12:00 a.m.
K33484369 : Linux kernel vulnerability CVE-2021-20194
2022-02-0700:00:00
my.f5.com
14
Security Advisory Description
There is a vulnerability in the linux kernel versions higher than 5.2 (if kernel compiled with config params CONFIG_BPF_SYSCALL=y , CONFIG_BPF=y , CONFIG_CGROUPS=y , CONFIG_CGROUP_BPF=y , CONFIG_HARDENED_USERCOPY not set, and BPF hook to getsockopt is registered). As result of BPF execution, the local user can trigger bug in __cgroup_bpf_run_filter_getsockopt() function that can lead to heap overflow (because of non-hardened usercopy). The impact of attack could be deny of service or possibly privileges escalation. (CVE-2021-20194)
Impact
An attacker may be able to exploit this vulnerability to cause a denial-of-service (DoS) or gain privileges with unauthorized access to view information or make modifications.
Related
cbl_mariner
cbl_mariner
CVE-2021-20194 affecting package kernel for versions less than 5.15.26.1-1
2022-04-09 06:52:47
CVE-2021-20194 affecting package kernel 5.10.123.1-1
2022-08-12 16:45:24
nvd
nvd
CVE-2021-20194
2021-02-23 23:15:13
fedora
fedora
[SECURITY] Fedora 33 Update: kernel-5.10.15-200.fc33
2021-02-14 01:25:57
[SECURITY] Fedora 32 Update: kernel-5.10.15-100.fc32
2021-02-14 01:46:30
openvas
openvas
Fedora: Security Advisory for kernel (FEDORA-2021-f8ede2fdfc)
2021-02-14 00:00:00
Fedora: Security Advisory for kernel (FEDORA-2021-76aaa904e2)
2021-02-14 00:00:00
Ubuntu: Security Advisory (USN-4879-1)
2021-03-17 00:00:00
debiancve
debiancve
CVE-2021-20194
2021-02-23 23:15:13
nessus
nessus
Fedora 33 : kernel (2021-76aaa904e2)
2021-02-16 00:00:00
Fedora 32 : kernel (2021-f8ede2fdfc)
2021-02-16 00:00:00
Ubuntu 20.04 LTS : Linux kernel vulnerabilities (USN-4879-1)
2021-03-23 00:00:00
redhatcve
redhatcve
CVE-2021-20194
2021-02-09 13:05:55
osv
osv
CVE-2021-20194
2021-02-23 23:15:13
linux, linux-aws, linux-azure, linux-gcp, linux-hwe-5.8, linux-kvm, linux-oracle, linux-raspi vulnerabilities
2021-03-16 06:51:28
linux-oem-5.10 vulnerabilities
2021-03-20 04:51:03
veracode
veracode
Privilege Escalation
2021-03-18 22:36:16
cvelist
cvelist
CVE-2021-20194
2021-02-23 22:33:24
cve
cve
CVE-2021-20194
2021-02-23 23:15:13
prion
prion
Design/Logic Flaw
2021-02-23 23:15:00
ubuntucve
ubuntucve
CVE-2021-20194
2021-02-23 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2021-03-16 00:00:00
Linux kernel (OEM) vulnerabilities
2021-03-20 00:00:00
Linux kernel vulnerabilities
2021-04-13 00:00:00
mageia
mageia
Updated kernel packages fix security vulnerabilities
2021-03-04 15:26:19
Updated kernel-linus packages fix security vulnerabilities
2021-03-04 15:26:19
oraclelinux
oraclelinux
kernel security, bug fix, and enhancement update
2021-11-16 00:00:00
almalinux
almalinux
Moderate: kernel security, bug fix, and enhancement update
2021-11-09 09:08:02
redhat
redhat
(RHSA-2021:4140) Moderate: kernel-rt security and bug fix update
2021-11-09 08:21:02
(RHSA-2021:4356) Moderate: kernel security, bug fix, and enhancement update
2021-11-09 09:08:02