Home

CVE-2021-29155

Description

An issue was discovered in the Linux kernel through 5.11.x. kernel/bpf/verifier.c performs undesirable out-of-bounds speculation on pointer arithmetic, leading to side-channel attacks that defeat Spectre mitigations and obtain sensitive information from kernel memory. Specifically, for sequences of pointer arithmetic operations, the pointer modification performed by the first operation is not correctly accounted for when restricting subsequent operations.

Risk Information

Base Score
5.5
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
0.212

Associated Vulnerability

VulnerabilityOS Platform
SUSE-SU-2021:1572-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-4.12.14-16.56.1.x86_64.rpmLinux
SUSE-SU-2021:1572-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-base-4.12.14-16.56.1.x86_64.rpmLinux
SUSE-SU-2021:1572-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-base-debuginfo-4.12.14-16.56.1.x86_64.rpmLinux
SUSE-SU-2021:1572-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-debuginfo-4.12.14-16.56.1.x86_64.rpmLinux
SUSE-SU-2021:1572-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-debugsource-4.12.14-16.56.1.x86_64.rpmLinux
SUSE-SU-2021:1572-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-devel-4.12.14-16.56.1.x86_64.rpmLinux
SUSE-SU-2021:1572-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-devel-azure-4.12.14-16.56.1.noarch.rpmLinux
SUSE-SU-2021:1572-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-source-azure-4.12.14-16.56.1.noarch.rpmLinux
SUSE-SU-2021:1572-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-syms-azure-4.12.14-16.56.1.x86_64.rpmLinux
SUSE-SU-2021:1595-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-4.12.14-122.71.1.x86_64.rpmLinux
SUSE-SU-2021:1595-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-base-4.12.14-122.71.1.x86_64.rpmLinux
SUSE-SU-2021:1595-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-base-debuginfo-4.12.14-122.71.1.x86_64.rpmLinux
SUSE-SU-2021:1595-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-debuginfo-4.12.14-122.71.1.x86_64.rpmLinux
SUSE-SU-2021:1595-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-debugsource-4.12.14-122.71.1.x86_64.rpmLinux
SUSE-SU-2021:1595-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-devel-4.12.14-122.71.1.x86_64.rpmLinux
SUSE-SU-2021:1595-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-devel-debuginfo-4.12.14-122.71.1.x86_64.rpmLinux
SUSE-SU-2021:1595-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-devel-4.12.14-122.71.1.noarch.rpmLinux
SUSE-SU-2021:1595-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-macros-4.12.14-122.71.1.noarch.rpmLinux
SUSE-SU-2021:1595-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-source-4.12.14-122.71.1.noarch.rpmLinux
SUSE-SU-2021:1595-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-syms-4.12.14-122.71.1.x86_64.rpmLinux
Linux kernel (USN-4977-1) linux-image-aws_5.11.0.1008.8_amd64.debLinux
Linux kernel (USN-4977-1) linux-image-gcp_5.11.0.1008.8_amd64.debLinux
Linux kernel (USN-4977-1) linux-image-gke_5.11.0.1008.8_amd64.debLinux
Linux kernel (USN-4977-1) linux-image-kvm_5.11.0.1008.8_amd64.debLinux
Linux kernel (USN-4977-1) linux-image-azure_5.11.0.1006.6_amd64.debLinux
Linux kernel (USN-4977-1) linux-image-oracle_5.11.0.1007.7_amd64.debLinux
Linux kernel (USN-4977-1) linux-image-generic_5.11.0.18.19_amd64.debLinux
Linux kernel (USN-4977-1) linux-image-virtual_5.11.0.18.19_amd64.debLinux
Linux kernel (USN-4977-1) linux-image-lowlatency_5.11.0.18.19_amd64.debLinux
Linux kernel (USN-4977-1) linux-image-5.11.0-1008-aws_5.11.0-1008.8_amd64.debLinux
Linux kernel (USN-4977-1) linux-image-5.11.0-1008-gcp_5.11.0-1008.9_amd64.debLinux
Linux kernel (USN-4977-1) linux-image-5.11.0-1008-kvm_5.11.0-1008.8_amd64.debLinux
Linux kernel (USN-4977-1) linux-image-5.11.0-1006-azure_5.11.0-1006.6_amd64.debLinux
Linux kernel (USN-4977-1) linux-image-5.11.0-18-generic_5.11.0-18.19_amd64.debLinux
Linux kernel (USN-4977-1) linux-image-5.11.0-1007-oracle_5.11.0-1007.7_amd64.debLinux
Linux kernel (USN-4977-1) linux-image-5.11.0-18-lowlatency_5.11.0-18.19_amd64.debLinux
Linux kernel for OEM systems (USN-4983-1) linux-image-oem-20.04_5.10.0.1029.30_amd64.debLinux
Linux kernel for OEM systems (USN-4983-1) linux-image-oem-20.04b_5.10.0.1029.30_amd64.debLinux
Linux kernel for OEM systems (USN-4983-1) linux-image-5.10.0-1029-oem_5.10.0-1029.30_amd64.debLinux
Linux kernel (USN-4999-1) linux-image-aws_5.8.0.1038.40_amd64.debLinux
Linux kernel (USN-4999-1) linux-image-aws_5.8.0.1038.40~20.04.11_amd64.debLinux
Linux kernel (USN-4999-1) linux-image-gcp_5.8.0.1035.35_amd64.debLinux
Linux kernel (USN-4999-1) linux-image-gcp_5.8.0.1035.37~20.04.9_amd64.debLinux
Linux kernel (USN-4999-1) linux-image-gke_5.8.0.1035.35_amd64.debLinux
Linux kernel (USN-4999-1) linux-image-kvm_5.8.0.1030.32_amd64.debLinux
Linux kernel (USN-4999-1) linux-image-azure_5.8.0.1036.36_amd64.debLinux
Linux kernel (USN-4999-1) linux-image-azure_5.8.0.1036.38~20.04.8_amd64.debLinux
Linux kernel (USN-4999-1) linux-image-oracle_5.8.0.1033.32_amd64.debLinux
Linux kernel (USN-4999-1) linux-image-oracle_5.8.0.1033.34~20.04.9_amd64.debLinux
Linux kernel (USN-4999-1) linux-image-generic_5.8.0.59.64_amd64.debLinux
Linux kernel (USN-4999-1) linux-image-virtual_5.8.0.59.64_amd64.debLinux
Linux kernel (USN-4999-1) linux-image-lowlatency_5.8.0.59.64_amd64.debLinux
Linux kernel (USN-4999-1) linux-image-5.8.0-1030-kvm_5.8.0-1030.32_amd64.debLinux
Linux kernel (USN-4999-1) linux-image-5.8.0-1035-gcp_5.8.0-1035.37_amd64.debLinux
Linux kernel (USN-4999-1) linux-image-5.8.0-1035-gcp_5.8.0-1035.37~20.04.1_amd64.debLinux
Linux kernel (USN-4999-1) linux-image-5.8.0-1038-aws_5.8.0-1038.40_amd64.debLinux
Linux kernel (USN-4999-1) linux-image-5.8.0-1038-aws_5.8.0-1038.40~20.04.1_amd64.debLinux
Linux kernel (USN-4999-1) linux-image-5.8.0-1036-azure_5.8.0-1036.38_amd64.debLinux
Linux kernel (USN-4999-1) linux-image-5.8.0-1036-azure_5.8.0-1036.38~20.04.1_amd64.debLinux
Linux kernel (USN-4999-1) linux-image-5.8.0-59-generic_5.8.0-59.66_amd64.debLinux
Linux kernel (USN-4999-1) linux-image-5.8.0-59-generic_5.8.0-59.66~20.04.1_amd64.debLinux
Linux kernel (USN-4999-1) linux-image-5.8.0-1033-oracle_5.8.0-1033.34_amd64.debLinux
Linux kernel (USN-4999-1) linux-image-5.8.0-1033-oracle_5.8.0-1033.34~20.04.1_amd64.debLinux
Linux kernel (USN-4999-1) linux-image-generic-hwe-20.04_5.8.0.59.66~20.04.42_amd64.debLinux
Linux kernel (USN-4999-1) linux-image-virtual-hwe-20.04_5.8.0.59.66~20.04.42_amd64.debLinux
Linux kernel (USN-4999-1) linux-image-5.8.0-59-lowlatency_5.8.0-59.66_amd64.debLinux
Linux kernel (USN-4999-1) linux-image-5.8.0-59-lowlatency_5.8.0-59.66~20.04.1_amd64.debLinux
Linux kernel (USN-4999-1) linux-image-lowlatency-hwe-20.04_5.8.0.59.66~20.04.42_amd64.debLinux
Kernel-uek update (ELSA-2021-9362) kernel-uek-5.4.17-2102.203.5.el8uek.x86_64.rpmLinux
Kernel-uek-debug update (ELSA-2021-9362) kernel-uek-debug-5.4.17-2102.203.5.el8uek.x86_64.rpmLinux
Kernel-uek-debug-devel update (ELSA-2021-9362) kernel-uek-debug-devel-5.4.17-2102.203.5.el8uek.x86_64.rpmLinux
Kernel-uek-devel update (ELSA-2021-9362) kernel-uek-devel-5.4.17-2102.203.5.el8uek.x86_64.rpmLinux
Kernel-uek-doc update (ELSA-2021-9362) kernel-uek-doc-5.4.17-2102.203.5.el8uek.noarch.rpmLinux
Kernel-uek-container update (ELSA-2021-9363) kernel-uek-container-5.4.17-2102.203.5.el8.x86_64.rpmLinux
Kernel-uek-container-debug update (ELSA-2021-9363) kernel-uek-container-debug-5.4.17-2102.203.5.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update bpftool-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-abi-stablelists-4.18.0-348.el8.noarch.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-core-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-cross-headers-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-debug-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-debug-core-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-debug-devel-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-debug-modules-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-debug-modules-extra-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-devel-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-doc-4.18.0-348.el8.noarch.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-headers-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-modules-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-modules-extra-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-tools-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-tools-libs-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update perf-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update python3-perf-4.18.0-348.el8.x86_64.rpmLinux
kernel Security Update (ALAS-2021-1636) kernel-livepatch-4.14.232-176.381-1.0-0.amzn2.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234