Lucene search
Billy Jheng Bing-Jhong (@st424204) of STAR LabsZDI-21-589HistoryMay 13, 2021 - 12:00 a.m.
(Pwn2Own) Canonical Ubuntu io_uring Integer Overflow Privilege Escalation Vulnerability
2021-05-1300:00:00
Billy Jheng Bing-Jhong (@st424204) of STAR Labs
www.zerodayinitiative.com
106
0.001 Low
EPSS
Percentile
21.8%
This vulnerability allows local attackers to escalate privileges on affected installations of Canonical Ubuntu. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of buffers in io_uring. The issue results from the lack of proper validation of user-supplied data, which can result in an integer overflow before accessing memory. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of the kernel.
Related
cvelist
cvelist
CVE-2021-3491 Linux kernel io_uring PROVIDE_BUFFERS MAX_RW_COUNT bypass
2021-05-11 00:00:00
f5
f5
K84602160 : Linux kernel vulnerability CVE-2021-3491
2022-10-13 00:00:00
redhatcve
redhatcve
CVE-2021-3491
2021-05-11 20:54:12
nvd
nvd
CVE-2021-3491
2021-06-04 02:15:07
cve
cve
CVE-2021-3491
2021-06-04 02:15:07
cnvd
cnvd
Linux kernel MAX_RW_COUNT buffer overflow vulnerability
2021-07-16 00:00:00
debiancve
debiancve
CVE-2021-3491
2021-06-04 02:15:07
prion
prion
Heap overflow
2021-06-04 02:15:00
ubuntucve
ubuntucve
CVE-2021-3491
2021-05-11 00:00:00
nessus
nessus
Ubuntu 21.04 : Linux kernel vulnerabilities (USN-4950-1)
2021-05-12 00:00:00
Photon OS 4.0: Linux PHSA-2021-4.0-0023
2021-05-12 00:00:00
SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2021:1913-1)
2021-06-10 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-4950-1)
2022-01-28 00:00:00
Fedora: Security Advisory for kernel (FEDORA-2021-05152dbcf5)
2021-05-20 00:00:00
Fedora: Security Advisory for kernel-headers (FEDORA-2021-286375de1e)
2021-05-20 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2021-0023
2021-05-12 00:00:00
Important Photon OS Security Update - PHSA-2021-4.0-0023
2021-05-12 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2021-05-11 00:00:00
Linux kernel vulnerabilities
2021-05-11 00:00:00
Linux kernel (OEM) vulnerabilities
2021-05-11 00:00:00
fedora
fedora
[SECURITY] Fedora 33 Update: kernel-headers-5.11.20-200.fc33
2021-05-16 02:06:52
[SECURITY] Fedora 33 Update: kernel-tools-5.11.20-200.fc33
2021-05-16 02:06:52
[SECURITY] Fedora 34 Update: kernel-5.11.20-300.fc34
2021-05-16 02:03:13
mageia
mageia
Updated kernel packages fix security vulnerabilities
2021-05-19 22:29:59
Updated kernel-linus packages fix security vulnerabilities
2021-05-19 22:29:59
suse
suse
Security update for the Linux Kernel (important)
2021-06-06 00:00:00
Security update for the Linux Kernel (important)
2021-07-01 00:00:00
Security update for the Linux Kernel (important)
2021-07-11 00:00:00
osv
osv
linux, linux-aws, linux-azure, linux-gcp, linux-hwe-5.8, linux-kvm, linux-oracle, linux-raspi vulnerabilities
2021-05-11 22:37:17
linux-oem-5.10 vulnerabilities
2021-05-11 22:31:50