CVE-2021-46974

2024-02-2700:00:00

ubuntu.com

cve-2021-46974

linux kernel

bpf

vulnerability

fix

6.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.3%

JSON

In the Linux kernel, the following vulnerability has been resolved: bpf:
Fix masking negation logic upon negative dst register The negation logic
for the case where the off_reg is sitting in the dst register is not
correct given then we cannot just invert the add to a sub or vice versa. As
a fix, perform the final bitwise and-op unconditionally into AX from the
off_reg, then move the pointer from the src to dst and finally use AX as
the source for the original pointer arithmetic operation such that the
inversion yields a correct result. The single non-AX mov in between is
possible given constant blinding is retaining it as it’s not an immediate
based operation.

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchlinux< anyUNKNOWN
ubuntu20.04noarchlinux< 5.4.0-77.86UNKNOWN
ubuntu18.04noarchlinux-aws< anyUNKNOWN
ubuntu20.04noarchlinux-aws< 5.4.0-1051.53UNKNOWN
ubuntu18.04noarchlinux-aws-5.4< anyUNKNOWN
ubuntu16.04noarchlinux-aws-hwe< 4.15.0-1106.113~16.04.1UNKNOWN
ubuntu20.04noarchlinux-azure< 5.4.0-1051.53UNKNOWN
ubuntu14.04noarchlinux-azure< 4.15.0-1118.131~14.04.1UNKNOWN
ubuntu16.04noarchlinux-azure< 4.15.0-1118.131~16.04.1UNKNOWN
ubuntu18.04noarchlinux-azure-4.15< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	18.04	noarch	linux	< any	UNKNOWN
ubuntu	20.04	noarch	linux	< 5.4.0-77.86	UNKNOWN
ubuntu	18.04	noarch	linux-aws	< any	UNKNOWN
ubuntu	20.04	noarch	linux-aws	< 5.4.0-1051.53	UNKNOWN
ubuntu	18.04	noarch	linux-aws-5.4	< any	UNKNOWN
ubuntu	16.04	noarch	linux-aws-hwe	< 4.15.0-1106.113~16.04.1	UNKNOWN
ubuntu	20.04	noarch	linux-azure	< 5.4.0-1051.53	UNKNOWN
ubuntu	14.04	noarch	linux-azure	< 4.15.0-1118.131~14.04.1	UNKNOWN
ubuntu	16.04	noarch	linux-azure	< 4.15.0-1118.131~16.04.1	UNKNOWN
ubuntu	18.04	noarch	linux-azure-4.15	< any	UNKNOWN