Main Vulnerability Database Exploits ID:6666 - Exploit for Out-of-bounds write in Linux kernel - CVE-2021-3490

ID:6666 - Exploit for Out-of-bounds write in Linux kernel - CVE-2021-3490

Published: September 1, 2021

Vulnerability identifier: #VU55975

Vulnerability risk: Low

CVE-ID: CVE-2021-3490

CWE-ID: CWE-787

Exploitation vector: Local access

Vulnerable software:
Linux kernel

Link to public exploit:

https://www.rapid7.com/db/modules/exploit/linux/local/cve_2021_3490_ebpf_alu32_bounds_check_lpe

Vulnerability description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error when processing untrusted input in bpf. The eBPF ALU32 bounds tracking for bitwise ops (AND, OR and XOR) in the Linux kernel did not properly update 32-bit bounds, which could be turned into out of bounds reads and writes in the Linux kernel and therefore, arbitrary code execution. A local user can run a specially crafted program to trigger an out-of-bounds write and execute arbitrary code with elevated privileges.

Remediation

Install updates from vendor's website.

ID:6666 - Exploit for Out-of-bounds write in Linux kernel - CVE-2021-3490

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human