CVE-2021-41864

Updated: 2024-11-30 03:01:13.73094

Description:

prealloc_elems_and_freelist in kernel/bpf/stackmap.c in the Linux kernel before 5.14.12 allows unprivileged users to trigger an eBPF multiplication integer overflow with a resultant out-of-bounds write.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x MEDIUM 4.6
CVSS Version 3.x HIGH 7.8

Status

OS name Project name Version Score Severity Status Errata Last updated

Statement

AlmaLinux 9.2 ESU kernel 5.14.0 7.8 HIGH Already Fixed 2023-12-19 20:40:32
AlmaLinux 9.2 FIPS kernel 5.14.0 7.8 HIGH Already Fixed 2024-01-18 13:10:08
CentOS 6 ELS kernel 2.6.32 7.8 HIGH Not Vulnerable 2022-03-30 12:52:23
CentOS 7 ELS kernel 3.10.0 7.8 HIGH Released CLSA-2024:1720468480 2024-07-23 17:33:51
CentOS 8.4 ELS kernel 4.18.0 7.8 HIGH Released CLSA-2022:1651145959 2022-04-28 15:59:37
CentOS 8.5 ELS kernel 4.18.0 7.8 HIGH Released CLSA-2022:1651146021 2022-04-28 15:59:03
CentOS Stream 8 ELS kernel 4.18.0 7.8 HIGH Already Fixed 2024-06-09 11:20:33
CloudLinux 6 ELS kernel 2.6.32 7.8 HIGH Not Vulnerable 2022-03-30 12:52:23
CloudLinux 7 ELS kernel 3.10.0 7.8 HIGH Needs Triage 2024-09-06 04:49:56
Oracle Linux 6 ELS kernel 2.6.32 7.8 HIGH Not Vulnerable 2022-03-30 12:52:23
Total: 13