Out-of-bounds write in Linux kernel

#VU63574 Out-of-bounds write in Linux kernel

Published: 2022-05-24

Vulnerability identifier: #VU63574

Vulnerability risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-31916

CWE-ID: CWE-787

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Linux kernel
Operating systems & Components / Operating system

Vendor: Linux Foundation

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error in list_devices in drivers/md/dm-ioctl.c in the Multi-device driver module. A special user (CAP_SYS_ADMIN) can trigger a buffer overflow in the ioctl for listing devices and escalate privileges on the system.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Linux kernel: 5.0 - 5.11.21

CPE

cpe:2.3:o:linux_foundation:linux_kernel:5.0:*:*:*:*:*:*:*

External links
http://seclists.org/oss-sec/2021/q1/268
http://bugzilla.redhat.com/show_bug.cgi?id=1946965
http://github.com/torvalds/linux/commit/4edbe1d7bcffcd6269f3b5eb63f710393ff2ec7a
http://lists.debian.org/debian-lts-announce/2021/06/msg00019.html
http://lists.debian.org/debian-lts-announce/2021/06/msg00020.html

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

Latest bulletins with this vulnerability

ClevOS update for IBM Cloud Object Storage Systems