Lucene search

K
ubuntucveUbuntu.comUB:CVE-2021-33200
HistoryMay 27, 2021 - 12:00 a.m.

CVE-2021-33200

2021-05-2700:00:00
ubuntu.com
ubuntu.com
30

0.0004 Low

EPSS

Percentile

5.2%

kernel/bpf/verifier.c in the Linux kernel through 5.12.7 enforces incorrect
limits for pointer arithmetic operations, aka CID-bb01a1bba579. This can be
abused to perform out-of-bounds reads and writes in kernel memory, leading
to local privilege escalation to root. In particular, there is a corner
case where the off reg causes a masking direction change, which then
results in an incorrect final aux->alu_limit.