Executive Summary



This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.
Informations
Name CVE-2021-3491 First vendor Publication 2021-06-04
Vendor Cve Last vendor Modification 2021-07-16

Security-Database Scoring CVSS v3

Cvss vector : CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Overall CVSS Score 8.8
Base Score 8.8 Environmental Score 8.8
impact SubScore 6 Temporal Score 8.8
Exploitabality Sub Score 2
 
Attack Vector Local Attack Complexity Low
Privileges Required Low User Interaction None
Scope Changed Confidentiality Impact High
Integrity Impact High Availability Impact High
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:L/Au:N/C:C/I:C/A:C)
Cvss Base Score 7.2 Attack Range Local
Cvss Impact Score 10 Attack Complexity Low
Cvss Expoit Score 3.9 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

The io_uring subsystem in the Linux kernel allowed the MAX_RW_COUNT limit to be bypassed in the PROVIDE_BUFFERS operation, which led to negative values being usedin mem_rw when reading /proc//mem. This could be used to create a heap overflow leading to arbitrary code execution in the kernel. It was addressed via commit d1f82808877b ("io_uring: truncate lengths larger than MAX_RW_COUNT on provide buffers") (v5.13-rc1) and backported to the stable kernels in v5.12.4, v5.11.21, and v5.10.37. It was introduced in ddf0322db79c ("io_uring: add IORING_OP_PROVIDE_BUFFERS") (v5.7-rc1).

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3491

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-787 Out-of-bounds Write (CWE/SANS Top 25)

CPE : Common Platform Enumeration

TypeDescriptionCount
Os 3
Os 3394

Sources (Detail)

Source Url
CONFIRM https://security.netapp.com/advisory/ntap-20210716-0004/
MISC https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id...
https://www.zerodayinitiative.com/advisories/ZDI-21-589/
MLIST https://www.openwall.com/lists/oss-security/2021/05/11/13
UBUNTU https://ubuntu.com/security/notices/USN-4949-1
https://ubuntu.com/security/notices/USN-4950-1

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
Date Informations
2021-07-16 21:23:20
  • Multiple Updates
2021-07-16 17:22:57
  • Multiple Updates
2021-06-12 00:22:51
  • Multiple Updates
2021-06-05 01:44:36
  • Multiple Updates
2021-06-05 01:44:35
  • Multiple Updates
2021-06-04 17:22:49
  • Multiple Updates
2021-06-04 09:22:48
  • First insertion