Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2021-3491
HistoryJun 04, 2021 - 2:15 a.m.

Heap overflow

2021-06-0402:15:00
PRIOn knowledge base
www.prio-n.com
19

AI Score

8.5

Confidence

High

EPSS

0.001

Percentile

21.6%

JSON

The io_uring subsystem in the Linux kernel allowed the MAX_RW_COUNT limit to be bypassed in the PROVIDE_BUFFERS operation, which led to negative values being usedin mem_rw when reading /proc/<PID>/mem. This could be used to create a heap overflow leading to arbitrary code execution in the kernel. It was addressed via commit d1f82808877b (“io_uring: truncate lengths larger than MAX_RW_COUNT on provide buffers”) (v5.13-rc1) and backported to the stable kernels in v5.12.4, v5.11.21, and v5.10.37. It was introduced in ddf0322db79c (“io_uring: add IORING_OP_PROVIDE_BUFFERS”) (v5.7-rc1).

Related

cve 1
cvelist 1
f5 1
redhatcve 1
nvd 1
debiancve 1
cnvd 1
ubuntucve 1
zdi 1
openvas 24
photon 2
nessus 22
ubuntu 3
fedora 6
mageia 2
suse 4
osv 2
cve
cve
CVE-2021-3491
2021-06-04 02:15:07
cvelist
cvelist
CVE-2021-3491 Linux kernel io_uring PROVIDE_BUFFERS MAX_RW_COUNT bypass
2021-05-11 00:00:00
f5
f5
K84602160 : Linux kernel vulnerability CVE-2021-3491
2022-10-13 00:00:00
redhatcve
redhatcve
CVE-2021-3491
2021-05-11 20:54:12
nvd
nvd
CVE-2021-3491
2021-06-04 02:15:07
debiancve
debiancve
CVE-2021-3491
2021-06-04 02:15:07
cnvd
cnvd
Linux kernel MAX_RW_COUNT buffer overflow vulnerability
2021-07-16 00:00:00
ubuntucve
ubuntucve
CVE-2021-3491
2021-05-11 00:00:00
zdi
zdi
(Pwn2Own) Canonical Ubuntu io_uring Integer Overflow Privilege Escalation Vulnerability
2021-05-13 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-4950-1)
2022-01-28 00:00:00
Fedora: Security Advisory for kernel-headers (FEDORA-2021-05152dbcf5)
2021-05-20 00:00:00
Fedora: Security Advisory for kernel (FEDORA-2021-286375de1e)
2021-05-20 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2021-0023
2021-05-12 00:00:00
Important Photon OS Security Update - PHSA-2021-4.0-0023
2021-05-12 00:00:00
nessus
nessus
Ubuntu 21.04 : Linux kernel vulnerabilities (USN-4950-1)
2021-05-12 00:00:00
Photon OS 4.0: Linux PHSA-2021-4.0-0023
2021-05-12 00:00:00
SUSE SLES15 Security Update : kernel (SUSE-SU-2021:1889-1)
2021-06-09 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2021-05-11 00:00:00
Linux kernel vulnerabilities
2021-05-11 00:00:00
Linux kernel (OEM) vulnerabilities
2021-05-11 00:00:00
fedora
fedora
[SECURITY] Fedora 33 Update: kernel-headers-5.11.20-200.fc33
2021-05-16 02:06:52
[SECURITY] Fedora 33 Update: kernel-tools-5.11.20-200.fc33
2021-05-16 02:06:52
[SECURITY] Fedora 34 Update: kernel-5.11.20-300.fc34
2021-05-16 02:03:13
mageia
mageia
Updated kernel packages fix security vulnerabilities
2021-05-19 22:29:59
Updated kernel-linus packages fix security vulnerabilities
2021-05-19 22:29:59
suse
suse
Security update for the Linux Kernel (important)
2021-07-01 00:00:00
Security update for the Linux Kernel (important)
2021-06-06 00:00:00
Security update for the Linux Kernel (important)
2021-07-11 00:00:00
osv
osv
linux, linux-aws, linux-azure, linux-gcp, linux-hwe-5.8, linux-kvm, linux-oracle, linux-raspi vulnerabilities
2021-05-11 22:37:17
linux-oem-5.10 vulnerabilities
2021-05-11 22:31:50

AI Score

8.5

Confidence

High

EPSS

0.001

Percentile

21.6%

JSON
Related for PRION:CVE-2021-3491
cve1cvelist1f51redhatcve1nvd1debiancve1cnvd1ubuntucve1zdi1openvas24photon2nessus22ubuntu3fedora6mageia2suse4osv2