Home

CVE-2021-20239

Description

A flaw was found in the Linux kernel in versions before 5.4.92 in the BPF protocol. This flaw allows an attacker with a local account to leak information about kernel internal addresses. The highest threat from this vulnerability is to confidentiality.

Risk Information

Base Score
3.3
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
EPSS Score
Exploitation Probability
0.087

Associated Vulnerability

VulnerabilityOS Platform
Linux kernel (USN-4878-1) linux-image-aws_5.4.0.1039.23_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-aws_5.4.0.1039.40_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-gcp_5.4.0.1038.25_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-gcp_5.4.0.1038.47_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-kvm_5.4.0.1034.32_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-oem_5.4.0.67.70_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-oem_5.4.0.67.75~18.04.62_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-azure_5.4.0.1041.21_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-azure_5.4.0.1041.39_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-gkeop_5.4.0.1011.14_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-oracle_5.4.0.1039.36_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-oracle_5.4.0.1039.42~18.04.22_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-generic_5.4.0.67.70_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-gke-5.4_5.4.0.1037.39~18.04.5_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-virtual_5.4.0.67.70_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-aws-edge_5.4.0.1039.23_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-gcp-edge_5.4.0.1038.25_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-oem-osp1_5.4.0.67.70_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-oem-osp1_5.4.0.67.75~18.04.62_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-gkeop-5.4_5.4.0.1011.14_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-gkeop-5.4_5.4.0.1011.12~18.04.12_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-azure-edge_5.4.0.1041.21_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-lowlatency_5.4.0.67.70_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-5.4.0-1034-kvm_5.4.0-1034.35_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-5.4.0-1037-gke_5.4.0-1037.39~18.04.1_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-5.4.0-1038-gcp_5.4.0-1038.41_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-5.4.0-1038-gcp_5.4.0-1038.41~18.04.1_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-5.4.0-1039-aws_5.4.0-1039.41_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-5.4.0-1039-aws_5.4.0-1039.41~18.04.1_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-5.4.0-1011-gkeop_5.4.0-1011.12_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-5.4.0-1011-gkeop_5.4.0-1011.12~18.04.2_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-5.4.0-1041-azure_5.4.0-1041.43_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-5.4.0-1041-azure_5.4.0-1041.43~18.04.1_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-5.4.0-67-generic_5.4.0-67.75_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-5.4.0-67-generic_5.4.0-67.75~18.04.1_i386.debLinux
Linux kernel (USN-4878-1) linux-image-5.4.0-67-generic_5.4.0-67.75~18.04.1_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-5.4.0-1039-oracle_5.4.0-1039.42_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-5.4.0-1039-oracle_5.4.0-1039.42~18.04.1_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-generic-hwe-18.04_5.4.0.67.75~18.04.62_i386.debLinux
Linux kernel (USN-4878-1) linux-image-generic-hwe-18.04_5.4.0.67.75~18.04.62_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-virtual-hwe-18.04_5.4.0.67.75~18.04.62_i386.debLinux
Linux kernel (USN-4878-1) linux-image-virtual-hwe-18.04_5.4.0.67.75~18.04.62_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-5.4.0-67-lowlatency_5.4.0-67.75_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-5.4.0-67-lowlatency_5.4.0-67.75~18.04.1_i386.debLinux
Linux kernel (USN-4878-1) linux-image-5.4.0-67-lowlatency_5.4.0-67.75~18.04.1_amd64.debLinux
Linux kernel (USN-4878-1) linux-image-lowlatency-hwe-18.04_5.4.0.67.75~18.04.62_i386.debLinux
Linux kernel (USN-4878-1) linux-image-lowlatency-hwe-18.04_5.4.0.67.75~18.04.62_amd64.debLinux
Linux kernel (USN-4910-1) linux-image-aws_5.8.0.1028.30_amd64.debLinux
Linux kernel (USN-4910-1) linux-image-gcp_5.8.0.1027.27_amd64.debLinux
Linux kernel (USN-4910-1) linux-image-gke_5.8.0.1027.27_amd64.debLinux
Linux kernel (USN-4910-1) linux-image-kvm_5.8.0.1023.25_amd64.debLinux
Linux kernel (USN-4910-1) linux-image-azure_5.8.0.1027.27_amd64.debLinux
Linux kernel (USN-4910-1) linux-image-oracle_5.8.0.1025.24_amd64.debLinux
Linux kernel (USN-4910-1) linux-image-generic_5.8.0.49.54_amd64.debLinux
Linux kernel (USN-4910-1) linux-image-virtual_5.8.0.49.54_amd64.debLinux
Linux kernel (USN-4910-1) linux-image-oem-20.04_5.8.0.49.54_amd64.debLinux
Linux kernel (USN-4910-1) linux-image-lowlatency_5.8.0.49.54_amd64.debLinux
Linux kernel (USN-4910-1) linux-image-5.8.0-1023-kvm_5.8.0-1023.25_amd64.debLinux
Linux kernel (USN-4910-1) linux-image-5.8.0-1027-gcp_5.8.0-1027.28_amd64.debLinux
Linux kernel (USN-4910-1) linux-image-5.8.0-1028-aws_5.8.0-1028.30_amd64.debLinux
Linux kernel (USN-4910-1) linux-image-5.8.0-1027-azure_5.8.0-1027.29_amd64.debLinux
Linux kernel (USN-4910-1) linux-image-5.8.0-49-generic_5.8.0-49.55_amd64.debLinux
Linux kernel (USN-4910-1) linux-image-5.8.0-49-generic_5.8.0-49.55~20.04.1_amd64.debLinux
Linux kernel (USN-4910-1) linux-image-5.8.0-1025-oracle_5.8.0-1025.26_amd64.debLinux
Linux kernel (USN-4910-1) linux-image-generic-hwe-20.04_5.8.0.49.55~20.04.33_amd64.debLinux
Linux kernel (USN-4910-1) linux-image-virtual-hwe-20.04_5.8.0.49.55~20.04.33_amd64.debLinux
Linux kernel (USN-4910-1) linux-image-5.8.0-49-lowlatency_5.8.0-49.55_amd64.debLinux
Linux kernel (USN-4910-1) linux-image-5.8.0-49-lowlatency_5.8.0-49.55~20.04.1_amd64.debLinux
Linux kernel (USN-4910-1) linux-image-lowlatency-hwe-20.04_5.8.0.49.55~20.04.33_amd64.debLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update bpftool-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-abi-stablelists-4.18.0-348.el8.noarch.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-core-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-cross-headers-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-debug-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-debug-core-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-debug-devel-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-debug-modules-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-debug-modules-extra-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-devel-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-doc-4.18.0-348.el8.noarch.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-headers-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-modules-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-modules-extra-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-tools-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-tools-libs-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update perf-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update python3-perf-4.18.0-348.el8.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234