Lucene search
F5F5:K84602160HistoryOct 13, 2022 - 12:00 a.m.
K84602160 : Linux kernel vulnerability CVE-2021-3491
2022-10-1300:00:00
my.f5.com
24
linux kernel
max_rw_count
io_uring subsystem
heap overflow
arbitrary code execution
vulnerability
cve-2021-3491
Security Advisory Description
The io_uring subsystem in the Linux kernel allowed the MAX_RW_COUNT limit to be bypassed in the PROVIDE_BUFFERS operation, which led to negative values being usedin mem_rw when reading /proc/<PID>/mem. This could be used to create a heap overflow leading to arbitrary code execution in the kernel. It was addressed via commit d1f82808877b (“io_uring: truncate lengths larger than MAX_RW_COUNT on provide buffers”) (v5.13-rc1) and backported to the stable kernels in v5.12.4, v5.11.21, and v5.10.37. It was introduced in ddf0322db79c (“io_uring: add IORING_OP_PROVIDE_BUFFERS”) (v5.7-rc1). (CVE-2021-3491)
Impact
There is no impact; F5 products are not affected by this vulnerability.
Related
cvelist
cvelist
CVE-2021-3491 Linux kernel io_uring PROVIDE_BUFFERS MAX_RW_COUNT bypass
2021-05-11 00:00:00
redhatcve
redhatcve
CVE-2021-3491
2021-05-11 20:54:12
nvd
nvd
CVE-2021-3491
2021-06-04 02:15:07
cve
cve
CVE-2021-3491
2021-06-04 02:15:07
cnvd
cnvd
Linux kernel MAX_RW_COUNT buffer overflow vulnerability
2021-07-16 00:00:00
debiancve
debiancve
CVE-2021-3491
2021-06-04 02:15:07
prion
prion
Heap overflow
2021-06-04 02:15:00
ubuntucve
ubuntucve
CVE-2021-3491
2021-05-11 00:00:00
zdi
zdi
nessus
nessus
Ubuntu 21.04 : Linux kernel vulnerabilities (USN-4950-1)
2021-05-12 00:00:00
Photon OS 4.0: Linux PHSA-2021-4.0-0023
2021-05-12 00:00:00
SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2021:1913-1)
2021-06-10 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-4950-1)
2022-01-28 00:00:00
Fedora: Security Advisory for kernel (FEDORA-2021-05152dbcf5)
2021-05-20 00:00:00
Fedora: Security Advisory for kernel-headers (FEDORA-2021-286375de1e)
2021-05-20 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2021-0023
2021-05-12 00:00:00
Important Photon OS Security Update - PHSA-2021-4.0-0023
2021-05-12 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2021-05-11 00:00:00
Linux kernel vulnerabilities
2021-05-11 00:00:00
Linux kernel (OEM) vulnerabilities
2021-05-11 00:00:00
fedora
fedora
[SECURITY] Fedora 33 Update: kernel-headers-5.11.20-200.fc33
2021-05-16 02:06:52
[SECURITY] Fedora 33 Update: kernel-tools-5.11.20-200.fc33
2021-05-16 02:06:52
[SECURITY] Fedora 34 Update: kernel-5.11.20-300.fc34
2021-05-16 02:03:13
mageia
mageia
Updated kernel packages fix security vulnerabilities
2021-05-19 22:29:59
Updated kernel-linus packages fix security vulnerabilities
2021-05-19 22:29:59
suse
suse
Security update for the Linux Kernel (important)
2021-06-06 00:00:00
Security update for the Linux Kernel (important)
2021-07-01 00:00:00
Security update for the Linux Kernel (important)
2021-07-11 00:00:00
osv
osv
linux, linux-aws, linux-azure, linux-gcp, linux-hwe-5.8, linux-kvm, linux-oracle, linux-raspi vulnerabilities
2021-05-11 22:37:17
linux-oem-5.10 vulnerabilities
2021-05-11 22:31:50