CVE-2021-29154

Updated: 2024-05-15 01:33:32.365765

Description:

BPF JIT compilers in the Linux kernel through 5.11.12 have incorrect computation of branch displacements, allowing them to execute arbitrary code within the kernel context. This affects arch/x86/net/bpf_jit_comp.c and arch/x86/net/bpf_jit_comp32.c.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x HIGH 7.2
CVSS Version 3.x HIGH 7.8

Status

OS name Project name Version Score Severity Status Errata Last updated
AlmaLinux 9.2 ESU kernel 5.14.0 7.8 HIGH Already Fixed 2024-05-31 10:03:26
AlmaLinux 9.2 FIPS kernel 5.14.0 7.8 HIGH Already Fixed 2024-05-31 10:03:26
CentOS 6 ELS kernel 2.6.32 7.8 HIGH Not Vulnerable 2022-04-19 00:48:53
CentOS 7 ELS kernel 3.10.0 7.8 HIGH Not Vulnerable 2023-11-02 09:35:37
CentOS 8.4 ELS kernel 4.18.0 7.8 HIGH Released CLSA-2022:1651145959 2022-04-28 15:59:40
CentOS 8.5 ELS kernel 4.18.0 7.8 HIGH Released CLSA-2022:1651146021 2022-04-28 15:59:07
CentOS Stream 8 ELS kernel 4.18.0 7.8 HIGH Not Vulnerable 2024-06-09 11:20:33
CloudLinux 6 ELS kernel 2.6.32 7.8 HIGH Not Vulnerable 2022-04-19 00:48:53
CloudLinux 7 ELS kernel 3.10.0 7.8 HIGH Needs Triage 2024-09-06 04:49:54
Oracle Linux 6 ELS kernel 2.6.32 7.8 HIGH Not Vulnerable 2022-04-19 00:48:53
Total: 13