Lucene search
PRIOn knowledge basePRION:CVE-2021-20194HistoryFeb 23, 2021 - 11:15 p.m.
Design/Logic Flaw
2021-02-2323:15:00
PRIOn knowledge base
www.prio-n.com
9
There is a vulnerability in the linux kernel versions higher than 5.2 (if kernel compiled with config params CONFIG_BPF_SYSCALL=y , CONFIG_BPF=y , CONFIG_CGROUPS=y , CONFIG_CGROUP_BPF=y , CONFIG_HARDENED_USERCOPY not set, and BPF hook to getsockopt is registered). As result of BPF execution, the local user can trigger bug in __cgroup_bpf_run_filter_getsockopt() function that can lead to heap overflow (because of non-hardened usercopy). The impact of attack could be deny of service or possibly privileges escalation.
| CPE | Name | Operator | Version |
|---|---|---|---|
| linux_kernel | gt | 5.2 | |
| enterprise_linux | eq | 8.0 | |
| openshift_container_platform | eq | 4.5 | |
| openshift_container_platform | eq | 4.6 | |
| openshift_container_platform | eq | 4.4 |
Related
cbl_mariner
cbl_mariner
CVE-2021-20194 affecting package kernel for versions less than 5.15.26.1-1
2022-04-09 06:52:47
CVE-2021-20194 affecting package kernel 5.10.123.1-1
2022-08-12 16:45:24
nvd
nvd
CVE-2021-20194
2021-02-23 23:15:13
fedora
fedora
[SECURITY] Fedora 33 Update: kernel-5.10.15-200.fc33
2021-02-14 01:25:57
[SECURITY] Fedora 32 Update: kernel-5.10.15-100.fc32
2021-02-14 01:46:30
openvas
openvas
Fedora: Security Advisory for kernel (FEDORA-2021-f8ede2fdfc)
2021-02-14 00:00:00
Fedora: Security Advisory for kernel (FEDORA-2021-76aaa904e2)
2021-02-14 00:00:00
Ubuntu: Security Advisory (USN-4879-1)
2021-03-17 00:00:00
debiancve
debiancve
CVE-2021-20194
2021-02-23 23:15:13
nessus
nessus
Fedora 33 : kernel (2021-76aaa904e2)
2021-02-16 00:00:00
Fedora 32 : kernel (2021-f8ede2fdfc)
2021-02-16 00:00:00
Ubuntu 20.04 LTS : Linux kernel vulnerabilities (USN-4879-1)
2021-03-23 00:00:00
redhatcve
redhatcve
CVE-2021-20194
2021-02-09 13:05:55
f5
f5
K33484369 : Linux kernel vulnerability CVE-2021-20194
2022-02-07 00:00:00
osv
osv
CVE-2021-20194
2021-02-23 23:15:13
linux, linux-aws, linux-azure, linux-gcp, linux-hwe-5.8, linux-kvm, linux-oracle, linux-raspi vulnerabilities
2021-03-16 06:51:28
linux-oem-5.10 vulnerabilities
2021-03-20 04:51:03
veracode
veracode
Privilege Escalation
2021-03-18 22:36:16
cvelist
cvelist
CVE-2021-20194
2021-02-23 22:33:24
cve
cve
CVE-2021-20194
2021-02-23 23:15:13
ubuntucve
ubuntucve
CVE-2021-20194
2021-02-23 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2021-03-16 00:00:00
Linux kernel (OEM) vulnerabilities
2021-03-20 00:00:00
Linux kernel vulnerabilities
2021-04-13 00:00:00
mageia
mageia
Updated kernel-linus packages fix security vulnerabilities
2021-03-04 15:26:19
Updated kernel packages fix security vulnerabilities
2021-03-04 15:26:19
oraclelinux
oraclelinux
kernel security, bug fix, and enhancement update
2021-11-16 00:00:00
almalinux
almalinux
Moderate: kernel security, bug fix, and enhancement update
2021-11-09 09:08:02
redhat
redhat
(RHSA-2021:4140) Moderate: kernel-rt security and bug fix update
2021-11-09 08:21:02
(RHSA-2021:4356) Moderate: kernel security, bug fix, and enhancement update
2021-11-09 09:08:02