Ubuntu.comUB:CVE-2021-38300CVE-2021-38300
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
44.3%
arch/mips/net/bpf_jit.c in the Linux kernel before 5.4.10 can generate
undesirable machine code when transforming unprivileged cBPF programs,
allowing execution of arbitrary code within the kernel context. This occurs
because conditional branches can exceed the 128 KB limit of the MIPS
architecture.
Notes
| Author | Note |
|---|---|
| sbeattie | MIPS only break entry may be newer than c6610de353da5ca6, introduction of ebpf jit for MIPS. |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 22.04 | noarch | linux-azure-fde | < any | UNKNOWN |
| ubuntu | 22.04 | noarch | linux-gkeop | < any | UNKNOWN |
| ubuntu | 20.04 | noarch | linux-gkeop-5.15 | < any | UNKNOWN |
| ubuntu | 20.04 | noarch | linux-hwe-5.13 | < 5.13.0-23.23~20.04.2 | UNKNOWN |
Related
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
44.3%