CVE-2021-41864 - log back

CVE-2021-41864 edited at 13 Oct 2021 09:03:00
Description
- prealloc_elems_and_freelist in kernel/bpf/stackmap.c in the Linux kernel allows unprivileged users to trigger an eBPF multiplication integer overflow with a resultant out-of-bounds write.
+ prealloc_elems_and_freelist in kernel/bpf/stackmap.c in the Linux kernel before version 5.14.12 allows unprivileged users to trigger an eBPF multiplication integer overflow with a resultant out-of-bounds write.
References
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=30e29a9a2bc6a4888335a6ede968b75cd329657a
+ https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.14.12&id=3a1ac1e368bedae2777d9a7cfdc65df4859f7e71
+ https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.10.73&id=064faa8e8a9b50f5010c5aa5740e06d477677a89
CVE-2021-41864 edited at 08 Oct 2021 11:13:21
Description
- prealloc_elems_and_freelist in kernel/bpf/stackmap.c in the Linux kernel through 5.14.9 allows unprivileged users to trigger an eBPF multiplication integer overflow with a resultant out-of-bounds write.
+ prealloc_elems_and_freelist in kernel/bpf/stackmap.c in the Linux kernel allows unprivileged users to trigger an eBPF multiplication integer overflow with a resultant out-of-bounds write.
References
- https://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf.git/commit/?id=30e29a9a2bc6a4888335a6ede968b75cd329657a
+ https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=30e29a9a2bc6a4888335a6ede968b75cd329657a
CVE-2021-41864 edited at 02 Oct 2021 18:03:57
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Local
Type
- Unknown
+ Arbitrary code execution
Description
+ prealloc_elems_and_freelist in kernel/bpf/stackmap.c in the Linux kernel through 5.14.9 allows unprivileged users to trigger an eBPF multiplication integer overflow with a resultant out-of-bounds write.
References
+ https://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf.git/commit/?id=30e29a9a2bc6a4888335a6ede968b75cd329657a
CVE-2021-41864 created at 02 Oct 2021 18:03:13
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes