Lucene search

K
ubuntucveUbuntu.comUB:CVE-2021-29155
HistoryApr 20, 2021 - 12:00 a.m.

CVE-2021-29155

2021-04-2000:00:00
ubuntu.com
ubuntu.com
20

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

0.001 Low

EPSS

Percentile

19.5%

An issue was discovered in the Linux kernel through 5.11.x.
kernel/bpf/verifier.c performs undesirable out-of-bounds speculation on
pointer arithmetic, leading to side-channel attacks that defeat Spectre
mitigations and obtain sensitive information from kernel memory.
Specifically, for sequences of pointer arithmetic operations, the pointer
modification performed by the first operation is not correctly accounted
for when restricting subsequent operations.

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchlinux< 4.15.0-151.157UNKNOWN
ubuntu20.04noarchlinux< 5.4.0-77.86UNKNOWN
ubuntu20.10noarchlinux< 5.8.0-59.66UNKNOWN
ubuntu21.04noarchlinux< 5.11.0-18.19UNKNOWN
ubuntu18.04noarchlinux-aws< 4.15.0-1109.116UNKNOWN
ubuntu20.04noarchlinux-aws< 5.4.0-1051.53UNKNOWN
ubuntu20.10noarchlinux-aws< 5.8.0-1038.40UNKNOWN
ubuntu21.04noarchlinux-aws< 5.11.0-1008.8UNKNOWN
ubuntu18.04noarchlinux-aws-5.4< 5.4.0-1051.53~18.04.1UNKNOWN
ubuntu20.04noarchlinux-aws-5.8< 5.8.0-1038.40~20.04.1UNKNOWN
Rows per page:
1-10 of 571

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

0.001 Low

EPSS

Percentile

19.5%