[SRU Focal,Groovy,Hirsute,Focal/linux-oem-5.10 0/3] CVE-2021-33200
Thadeu Lima de Souza Cascardo
cascardo at canonical.com
Thu May 27 21:36:42 UTC 2021
[Impact]
The vulnerability allows OOB reads and writes. Code execution cannot be ruled out.
[Potential regression]
Some BPF code may be denied to load.
[Test]
I tested a reproducer that may cause a kaslr leak, and it was stopped
after the fixes were applied.
Daniel Borkmann (3):
bpf: Wrap aux data inside bpf_sanitize_info container
bpf: Fix mask direction swap upon off reg sign change
bpf: No need to simulate speculative domain for immediates
kernel/bpf/verifier.c | 46 ++++++++++++++++++++++++++-----------------
1 file changed, 28 insertions(+), 18 deletions(-)
--
2.30.2
More information about the kernel-team
mailing list