CVE-2021-45402Resource Exposure in Kernel

CWE-668Resource ExposureCWE-120Classic Buffer Overflow10 documents7 sources
Severity
5.5MEDIUMNVD
OSV6.5
EPSS
0.1%
top 78.82%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Linux KernelDebian LinuxMsrc Cbl2 Kernel 5.15.26.1-1 ON CBL Mariner 2.0+1 more
Timeline
PublishedFeb 11
Latest updateApr 6

Description

The check_alu_op() function in kernel/bpf/verifier.c in the Linux kernel through v5.16-rc5 did not properly update bounds while handling the mov32 instruction, which allows local users to obtain potentially sensitive address information, aka a "pointer leak."

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages5 packages

NVDlinux/linux_kernel< 5.16+1
Debianlinux/linux_kernel< 5.10.92-1+3
debiandebian/linux< linux 5.15.15-1 (bookworm)

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

4
OSV
linux-azure-5.13, linux-oracle-5.13 vulnerabilities2022-04-06
OSV
linux, linux-aws, linux-aws-5.13, linux-gcp, linux-gcp-5.13, linux-hwe-5.13, linux-kvm, linux-oracle, linux-raspi vulnerabilities2022-03-22
GHSA
GHSA-wj6w-52qh-v4q5: The check_alu_op() function in kernel/bpf/verifier2022-02-12
OSV
CVE-2021-45402: The check_alu_op() function in kernel/bpf/verifier2022-02-11

📋Vendor Advisories

5
Ubuntu
Linux kernel vulnerabilities2022-04-06
Ubuntu
Linux kernel vulnerabilities2022-03-22
Red Hat
kernel: pointer leak in check_alu_op() of kernel/bpf/verifier.c2022-02-11
Microsoft
The check_alu_op() function in kernel/bpf/verifier.c in the Linux kernel through v5.16-rc5 did not properly update bounds while handling the mov32 instruction which allows local users to obtain potent2022-02-08
Debian
CVE-2021-45402: linux - The check_alu_op() function in kernel/bpf/verifier.c in the Linux kernel through...2021