Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2021-38300

arch/mips/net/bpf_jit.c in the Linux kernel before 5.4.10 can generate undesirable machine code when transforming unprivileged cBPF programs, allowing execution of arbitrary code within the kernel context. This occurs because conditional branches can exceed the 128 KB limit of the MIPS architecture.

See the

CVE page on Mitre.org for more details.

References

MISC: http://www.openwall.co...
CONFIRM: https://security.netap...
CONFIRM: https://cdn.kernel.org...
CONFIRM: https://git.kernel.org...
DEBIAN: DSA-5096
MLIST: [debian-lts-announce] ...

Launchpad.net

CVE 2021-38300

Related bugs

References