CVE-2021-38300 - log back

CVE-2021-38300 edited at 20 Sep 2021 13:33:24
Description
- An issue has been discovered in the Linux kernel in the cBPF JIT compiler for MIPS that can be abused by unprivileged local users to escalate privileges.
+ arch/mips/net/bpf_jit.c in the Linux kernel through 5.14.6 can generate undesirable machine code when transforming unprivileged cBPF programs, allowing execution of arbitrary code within the kernel context. This occurs because conditional branches can exceed the 128 KB limit of the MIPS architecture.
CVE-2021-38300 edited at 18 Sep 2021 19:56:52
Description
- An issue has been discovered in the Linux kernel that can be abused by unprivileged local users to escalate privileges.
+ An issue has been discovered in the Linux kernel in the cBPF JIT compiler for MIPS that can be abused by unprivileged local users to escalate privileges.
CVE-2021-38300 edited at 15 Sep 2021 17:56:45
Severity
- Unknown
+ High
Remote
- Unknown
+ Local
Type
- Unknown
+ Privilege escalation
Description
+ An issue has been discovered in the Linux kernel that can be abused by unprivileged local users to escalate privileges.
References
+ https://www.openwall.com/lists/oss-security/2021/09/15/5
+ https://lore.kernel.org/bpf/20210915160437.4080-1-piotras@gmail.com/
CVE-2021-38300 created at 15 Sep 2021 17:55:15
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes