Buffer overflow in Linux Kernel
CVE-2021-3490
The eBPF ALU32 bounds tracking for bitwise ops (AND, OR and XOR) in the Linux kernel did not properly update 32-bit bounds, which could be turned into out of bounds reads and writes in the Linux kernel and therefore, arbitrary code executi…
Vulnerability class: Buffer Overflow
EPSS: 0.038 (88.3th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H.
Affected products
- Linux Kernel — versions trunk, linux-5.12.y, linux-5.11.y
Weakness classification (CWE)
Public proof-of-concept exploits
References
- ubuntu.com/security/notices/USN-4950-1 (vendor-advisory, x_refsource_UBUNTU)
- ubuntu.com/security/notices/USN-4949-1 (vendor-advisory, x_refsource_UBUNTU)
- [oss-security] CVE-2021-3490 - Linux kernel eBPF bitwise ops ALU32 bounds tracking (mailing-list, x_refsource_MLIST)
- git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf.git/commit/ (x_refsource_MISC)
- www.zerodayinitiative.com/advisories/ZDI-21-606/ (x_refsource_MISC)
- security.netapp.com/advisory/ntap-20210716-0004/ (x_refsource_CONFIRM)
- packetstormsecurity.com/files/164015/Linux-eBPF-ALU32-32-bit-Invalid-Bounds-Tra… (x_refsource_MISC)
Frequently asked questions
- What is CVE-2021-3490?
- CVE-2021-3490 is a high-severity vulnerability in Linux Kernel, classified under Out-of-bounds Write. CVSS score: 7.8/10. Published 2021-06-04.
- How severe is CVE-2021-3490?
- High severity. CVSS v3 base score is 7.8 out of 10.
- Is CVE-2021-3490 known to be exploited?
- 67 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.