3656 matches found
UBUNTU-CVE-2021-36086
The CIL compiler in SELinux 3.2 has a use-after-free in cilresetclasspermission called from cilresetclasspermsset and cilresetclasspermslist...
CVE-2021-36086
The CIL compiler in SELinux 3.2 has a use-after-free in cilresetclasspermission called from cilresetclasspermsset and cilresetclasspermslist...
CVE-2021-36085
The CIL compiler in SELinux 3.2 has a use-after-free in cilverifyclassperms called from verifymappermclassperms and hashtabmap...
Design/Logic Flaw
The CIL compiler in SELinux 3.2 has a use-after-free in cilresetclasspermission called from cilresetclasspermsset and cilresetclasspermslist...
Double free
The CIL compiler in SELinux 3.2 has a use-after-free in cilverifyclassperms called from verifymappermclassperms and hashtabmap...
Design/Logic Flaw
The CIL compiler in SELinux 3.2 has a use-after-free in cilverifyclassperms called from cilverifyclasspermission and cilpreverifyhelper...
CVE-2021-36084
The CIL compiler in SELinux 3.2 has a use-after-free in cilverifyclassperms called from cilverifyclasspermission and cilpreverifyhelper...
UBUNTU-CVE-2021-36084
The CIL compiler in SELinux 3.2 has a use-after-free in cilverifyclassperms called from cilverifyclasspermission and cilpreverifyhelper...
UBUNTU-CVE-2021-36085
The CIL compiler in SELinux 3.2 has a use-after-free in cilverifyclassperms called from verifymappermclassperms and hashtabmap...
CVE-2021-36087
The CIL compiler in SELinux 3.2 has a heap-based buffer over-read in ebitmapmatchany called indirectly from cilcheckneverallow. This occurs because there is sometimes a lack of checks for invalid statements in an optional block...
CVE-2021-36087
The CIL compiler in SELinux 3.2 has a heap-based buffer over-read in ebitmapmatchany called indirectly from cilcheckneverallow. This occurs because there is sometimes a lack of checks for invalid statements in an optional block...
CVE-2021-36087
CVE-2021-36087 is a real vulnerability in the CIL compiler of SELinux 3.2 affecting the libsepol stack. The issue is a heap-based buffer over-read in ebitmap_match_any (triggered via cil_check_neverallow), caused by insufficient validation of statements within an optional block. The included conn...
CVE-2021-36086
The CIL compiler in SELinux 3.2 has a use-after-free in cilresetclasspermission called from cilresetclasspermsset and cilresetclasspermslist...
CVE-2021-36086
The CIL compiler in SELinux 3.2 has a use-after-free in cilresetclasspermission called from cilresetclasspermsset and cilresetclasspermslist...
CVE-2021-36086
Summary: CVE-2021-36086 concerns the libsepol component used by SELinux, stemming from a use-after-free in the CIL compiler’s class-permission handling. The published records consistently describe the vulnerability as occurring in the CIL code path (cil_reset_classpermission) and related helper c...
CVE-2021-36085
The CIL compiler in SELinux 3.2 has a use-after-free in cilverifyclassperms called from verifymappermclassperms and hashtabmap...
CVE-2021-36085
The CIL compiler in SELinux 3.2 has a use-after-free in cilverifyclassperms called from verifymappermclassperms and hashtabmap...
CVE-2021-36084
The CIL compiler in SELinux 3.2 has a use-after-free in cilverifyclassperms called from cilverifyclasspermission and cilpreverifyhelper...
CVE-2021-36084
The CIL compiler in SELinux 3.2 has a use-after-free in cilverifyclassperms called from cilverifyclasspermission and cilpreverifyhelper...
CVE-2021-36084
CVE-2021-36084 pertains to libsepol in SELinux 3.2, where the CIL compiler has a use-after-free in __cil_verify_classperms (and related paths) and a heap-based buffer over-read (CVE-2021-36087). Several connected advisories confirm affected product libsepol and provide fixes: Debian LTS DLA-3930-...