Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2021-3411 (GCVE-0-2021-3411)
Vulnerability from cvelistv5 – Published: 2021-03-09 19:08 – Updated: 2024-08-03 16:53
VLAI
EPSS
Summary
A flaw was found in the Linux kernel in versions prior to 5.10. A violation of memory access was found while detecting a padding of int3 in the linking state. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
Severity
6.7 (Medium)
CWE
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://bugzilla.redhat.com/show_bug.cgi?id=1928236 | x_refsource_MISC |
| http://blog.pi3.com.pl/?p=831 | x_refsource_MISC |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| n/a | Linux kernel |
Affected:
Linux kernel 5.10
|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T16:53:17.577Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1928236"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://blog.pi3.com.pl/?p=831"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Linux kernel",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Linux kernel 5.10"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in the Linux kernel in versions prior to 5.10. A violation of memory access was found while detecting a padding of int3 in the linking state. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability."
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-94",
"description": "CWE-94",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-03-09T19:08:30.000Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1928236"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://blog.pi3.com.pl/?p=831"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2021-3411",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Linux kernel",
"version": {
"version_data": [
{
"version_value": "Linux kernel 5.10"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A flaw was found in the Linux kernel in versions prior to 5.10. A violation of memory access was found while detecting a padding of int3 in the linking state. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-94"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1928236",
"refsource": "MISC",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1928236"
},
{
"name": "http://blog.pi3.com.pl/?p=831",
"refsource": "MISC",
"url": "http://blog.pi3.com.pl/?p=831"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2021-3411",
"datePublished": "2021-03-09T19:08:30.000Z",
"dateReserved": "2021-02-12T00:00:00.000Z",
"dateUpdated": "2024-08-03T16:53:17.577Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2021-3411",
"date": "2026-06-30",
"epss": "0.00402",
"percentile": "0.32061"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2021-3411\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2021-03-09T20:15:13.417\",\"lastModified\":\"2024-11-21T06:21:26.693\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A flaw was found in the Linux kernel in versions prior to 5.10. A violation of memory access was found while detecting a padding of int3 in the linking state. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.\"},{\"lang\":\"es\",\"value\":\"Se encontr\u00f3 un fallo en el kernel de Linux en versiones anteriores a 5.10.\u0026#xa0;Se encontr\u00f3 una violaci\u00f3n del acceso a la memoria al detectar un relleno de int3 en el estado de enlace.\u0026#xa0;La mayor amenaza de esta vulnerabilidad es la confidencialidad e integridad de los datos, as\u00ed como la disponibilidad del sistema\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":6.7,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":0.8,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":4.6,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":3.9,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-94\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-94\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.10\",\"matchCriteriaId\":\"D61CA62B-157A-4415-B8FD-7C3C1208315D\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4CFF558-3C47-480D-A2F0-BABF26042943\"}]}]}],\"references\":[{\"url\":\"http://blog.pi3.com.pl/?p=831\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Exploit\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=1928236\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Exploit\",\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"http://blog.pi3.com.pl/?p=831\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=1928236\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Issue Tracking\",\"Third Party Advisory\"]}]}}"
}
}
Title
Уязвимость функции can_optimize (arch/x86/kernel/kprobes/opt.c) ядра операционной системы Linux, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации
Description
Уязвимость функции can_optimize (arch/x86/kernel/kprobes/opt.c) ядра операционной системы Linux связана с неверным управлением генерацией кода. Эксплуатация уязвимости может позволить нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации
Severity
Vendor
Red Hat Inc., Сообщество свободного программного обеспечения
Software Name
Red Hat Enterprise Linux, Linux
Software Version
7 (Red Hat Enterprise Linux), 8 (Red Hat Enterprise Linux), от 5.5 до 5.9.14 включительно (Linux)
Possible Mitigations
Использование рекомендаций:
Обновление ядра операционной системы Linux до актуальной версии
Для программных продуктов Red Hat Inc.:
https://bugzilla.redhat.com/show_bug.cgi?id=1928236
Reference
http://blog.pi3.com.pl/?p=831
https://bugzilla.redhat.com/show_bug.cgi?id=1928236
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3411
https://cxsecurity.com/cveshow/CVE-2021-3411/
https://kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.9.15
https://lists.openwall.net/linux-kernel/2020/12/11/265
https://lore.kernel.org/lkml/20201209215001.GA8593@pi3.com.pl/
https://nvd.nist.gov/vuln/detail/CVE-2021-3411
https://ubuntu.com/security/notices/USN-4912-1
https://usn.ubuntu.com/usn/usn-4912-1
https://www.cve.org/CVERecord?id=CVE-2021-3411
https://www.openwall.com/lists/oss-security/2021/02/19/6
CWE
CWE-94
{
"CVSS 2.0": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
"CVSS 3.0": "AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"CVSS 4.0": null,
"remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
"remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
"\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Red Hat Inc., \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
"\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "7 (Red Hat Enterprise Linux), 8 (Red Hat Enterprise Linux), \u043e\u0442 5.5 \u0434\u043e 5.9.14 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (Linux)",
"\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\n\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u044f\u0434\u0440\u0430 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b Linux \u0434\u043e \u0430\u043a\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0439 \u0432\u0435\u0440\u0441\u0438\u0438\n\n\u0414\u043b\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u044b\u0445 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u043e\u0432 Red Hat Inc.:\nhttps://bugzilla.redhat.com/show_bug.cgi?id=1928236",
"\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "08.09.2020",
"\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "13.09.2024",
"\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "30.03.2021",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2021-01617",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2021-3411",
"\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
"\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
"\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Red Hat Enterprise Linux, Linux",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "Red Hat Inc. Red Hat Enterprise Linux 7 , Red Hat Inc. Red Hat Enterprise Linux 8 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Linux \u0434\u043e 5.10 ",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0444\u0443\u043d\u043a\u0446\u0438\u0438 can_optimize (arch/x86/kernel/kprobes/opt.c) \u044f\u0434\u0440\u0430 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b Linux, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043e\u043a\u0430\u0437\u0430\u0442\u044c \u0432\u043e\u0437\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0435 \u043d\u0430 \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u0441\u0442\u044c, \u0446\u0435\u043b\u043e\u0441\u0442\u043d\u043e\u0441\u0442\u044c \u0438 \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u043e\u0441\u0442\u044c \u0437\u0430\u0449\u0438\u0449\u0430\u0435\u043c\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438",
"\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0421\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u0435\u0442 \u0432 \u043e\u0442\u043a\u0440\u044b\u0442\u043e\u043c \u0434\u043e\u0441\u0442\u0443\u043f\u0435",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u0432\u0435\u0440\u043d\u043e\u0435 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u0433\u0435\u043d\u0435\u0440\u0430\u0446\u0438\u0435\u0439 \u043a\u043e\u0434\u0430 (\u0412\u043d\u0435\u0434\u0440\u0435\u043d\u0438\u0435 \u043a\u043e\u0434\u0430) (CWE-94)",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0444\u0443\u043d\u043a\u0446\u0438\u0438 can_optimize (arch/x86/kernel/kprobes/opt.c) \u044f\u0434\u0440\u0430 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b Linux \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u0432\u0435\u0440\u043d\u044b\u043c \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435\u043c \u0433\u0435\u043d\u0435\u0440\u0430\u0446\u0438\u0435\u0439 \u043a\u043e\u0434\u0430. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043e\u043a\u0430\u0437\u0430\u0442\u044c \u0432\u043e\u0437\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0435 \u043d\u0430 \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u0441\u0442\u044c, \u0446\u0435\u043b\u043e\u0441\u0442\u043d\u043e\u0441\u0442\u044c \u0438 \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u043e\u0441\u0442\u044c \u0437\u0430\u0449\u0438\u0449\u0430\u0435\u043c\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438",
"\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
"\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
"\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u0418\u043d\u044a\u0435\u043a\u0446\u0438\u044f",
"\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "http://blog.pi3.com.pl/?p=831\nhttps://bugzilla.redhat.com/show_bug.cgi?id=1928236\nhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3411\nhttps://cxsecurity.com/cveshow/CVE-2021-3411/\nhttps://kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.9.15\nhttps://lists.openwall.net/linux-kernel/2020/12/11/265\nhttps://lore.kernel.org/lkml/20201209215001.GA8593@pi3.com.pl/\nhttps://nvd.nist.gov/vuln/detail/CVE-2021-3411\nhttps://ubuntu.com/security/notices/USN-4912-1\nhttps://usn.ubuntu.com/usn/usn-4912-1\nhttps://www.cve.org/CVERecord?id=CVE-2021-3411\nhttps://www.openwall.com/lists/oss-security/2021/02/19/6",
"\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
"\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430",
"\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-94",
"\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 4,6)\n\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 6,7)"
}
CERTFR-2021-AVI-265
Vulnerability from certfr_avis - Published: 2021-04-15 - Updated: 2021-04-15
De multiples vulnérabilités ont été découvertes dans le noyau Linux d'Ubuntu. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, un déni de service et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | ||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Ubuntu 16.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 20.10",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 18.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 20.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 14.04 ESM",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2021-20261",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20261"
},
{
"name": "CVE-2020-14390",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14390"
},
{
"name": "CVE-2021-20239",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20239"
},
{
"name": "CVE-2021-26931",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-26931"
},
{
"name": "CVE-2020-25285",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25285"
},
{
"name": "CVE-2021-3411",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3411"
},
{
"name": "CVE-2019-19061",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19061"
},
{
"name": "CVE-2020-0466",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-0466"
},
{
"name": "CVE-2021-29154",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-29154"
},
{
"name": "CVE-2015-1350",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1350"
},
{
"name": "CVE-2021-26930",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-26930"
},
{
"name": "CVE-2019-16231",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16231"
},
{
"name": "CVE-2020-27830",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27830"
},
{
"name": "CVE-2020-25639",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25639"
},
{
"name": "CVE-2017-16644",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-16644"
},
{
"name": "CVE-2019-16232",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16232"
},
{
"name": "CVE-2020-36158",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36158"
},
{
"name": "CVE-2021-28038",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28038"
},
{
"name": "CVE-2021-28950",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28950"
},
{
"name": "CVE-2020-25669",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25669"
},
{
"name": "CVE-2021-3348",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3348"
},
{
"name": "CVE-2021-20194",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20194"
},
{
"name": "CVE-2021-3347",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3347"
},
{
"name": "CVE-2021-3178",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3178"
},
{
"name": "CVE-2018-13095",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-13095"
},
{
"name": "CVE-2021-20268",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20268"
},
{
"name": "CVE-2020-14351",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14351"
},
{
"name": "CVE-2020-25645",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25645"
},
{
"name": "CVE-2020-0423",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-0423"
},
{
"name": "CVE-2017-5967",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5967"
},
{
"name": "CVE-2020-0465",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-0465"
},
{
"name": "CVE-2021-28375",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28375"
}
],
"initial_release_date": "2021-04-15T00:00:00",
"last_revision_date": "2021-04-15T00:00:00",
"links": [],
"reference": "CERTFR-2021-AVI-265",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2021-04-15T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux\nd\u0027Ubuntu. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer\nune ex\u00e9cution de code arbitraire, un d\u00e9ni de service et un contournement\nde la politique de s\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux d\u0027Ubuntu",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-4912-1 du 13 avril 2021",
"url": "https://ubuntu.com/security/notices/USN-4912-1"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-4904-1 du 13 avril 2021",
"url": "https://ubuntu.com/security/notices/USN-4904-1"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-4910-1 du 13 avril 2021",
"url": "https://ubuntu.com/security/notices/USN-4910-1"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-4907-1 du 13 avril 2021",
"url": "https://ubuntu.com/security/notices/USN-4907-1"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-4911-1 du 13 avril 2021",
"url": "https://ubuntu.com/security/notices/USN-4911-1"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-4909-1 du 13 avril 2021",
"url": "https://ubuntu.com/security/notices/USN-4909-1"
}
]
}
Title
Linux kernel内存访问冲突漏洞
Description
Linux kernel是一种计算机操作系统内核,以C语言和汇编语言写成,符合POSIX标准,按GNU通用公共许可证发行。
Linux kernel 5.10之前版本存在内存访问冲突漏洞。攻击者可利用该漏洞影响数据机密性、完整性以及系统可用性。
Severity
中
Formal description
目前厂商暂未发布修复措施解决此安全问题,建议使用此软件的用户随时关注厂商主页或参考网址以获取解决办法: https://ubuntu.com/security/CVE-2021-3411
Reference
https://nvd.nist.gov/vuln/detail/CVE-2021-3411
Impacted products
| Name | Linux Linux kernel <5.10 |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2021-3411",
"cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2021-3411"
}
},
"description": "Linux kernel\u662f\u4e00\u79cd\u8ba1\u7b97\u673a\u64cd\u4f5c\u7cfb\u7edf\u5185\u6838\uff0c\u4ee5C\u8bed\u8a00\u548c\u6c47\u7f16\u8bed\u8a00\u5199\u6210\uff0c\u7b26\u5408POSIX\u6807\u51c6\uff0c\u6309GNU\u901a\u7528\u516c\u5171\u8bb8\u53ef\u8bc1\u53d1\u884c\u3002\n\nLinux kernel 5.10\u4e4b\u524d\u7248\u672c\u5b58\u5728\u5185\u5b58\u8bbf\u95ee\u51b2\u7a81\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5f71\u54cd\u6570\u636e\u673a\u5bc6\u6027\u3001\u5b8c\u6574\u6027\u4ee5\u53ca\u7cfb\u7edf\u53ef\u7528\u6027\u3002",
"formalWay": "\u76ee\u524d\u5382\u5546\u6682\u672a\u53d1\u5e03\u4fee\u590d\u63aa\u65bd\u89e3\u51b3\u6b64\u5b89\u5168\u95ee\u9898\uff0c\u5efa\u8bae\u4f7f\u7528\u6b64\u8f6f\u4ef6\u7684\u7528\u6237\u968f\u65f6\u5173\u6ce8\u5382\u5546\u4e3b\u9875\u6216\u53c2\u8003\u7f51\u5740\u4ee5\u83b7\u53d6\u89e3\u51b3\u529e\u6cd5\uff1a\r\nhttps://ubuntu.com/security/CVE-2021-3411",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2021-19425",
"openTime": "2021-03-19",
"products": {
"product": "Linux Linux kernel \u003c5.10"
},
"referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2021-3411",
"serverity": "\u4e2d",
"submitTime": "2021-03-10",
"title": "Linux kernel\u5185\u5b58\u8bbf\u95ee\u51b2\u7a81\u6f0f\u6d1e"
}
FKIE_CVE-2021-3411
Vulnerability from fkie_nvd - Published: 2021-03-09 20:15 - Updated: 2026-06-17 04:05
Severity
Summary
A flaw was found in the Linux kernel in versions prior to 5.10. A violation of memory access was found while detecting a padding of int3 in the linking state. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
References
| URL | Tags | ||
|---|---|---|---|
| secalert@redhat.com | http://blog.pi3.com.pl/?p=831 | Exploit, Patch, Third Party Advisory | |
| secalert@redhat.com | https://bugzilla.redhat.com/show_bug.cgi?id=1928236 | Exploit, Issue Tracking, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://blog.pi3.com.pl/?p=831 | Exploit, Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://bugzilla.redhat.com/show_bug.cgi?id=1928236 | Exploit, Issue Tracking, Third Party Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| linux | linux_kernel | * | |
| redhat | enterprise_linux | 8.0 |
{
"affected": [
{
"affectedData": [
{
"product": "Linux kernel",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Linux kernel 5.10"
}
]
}
],
"source": "secalert@redhat.com"
}
],
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"matchCriteriaId": "D61CA62B-157A-4415-B8FD-7C3C1208315D",
"versionEndExcluding": "5.10",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*",
"matchCriteriaId": "F4CFF558-3C47-480D-A2F0-BABF26042943",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in the Linux kernel in versions prior to 5.10. A violation of memory access was found while detecting a padding of int3 in the linking state. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability."
},
{
"lang": "es",
"value": "Se encontr\u00f3 un fallo en el kernel de Linux en versiones anteriores a 5.10.\u0026#xa0;Se encontr\u00f3 una violaci\u00f3n del acceso a la memoria al detectar un relleno de int3 en el estado de enlace.\u0026#xa0;La mayor amenaza de esta vulnerabilidad es la confidencialidad e integridad de los datos, as\u00ed como la disponibilidad del sistema"
}
],
"id": "CVE-2021-3411",
"lastModified": "2026-06-17T04:05:02.690",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.6,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 0.8,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2021-03-09T20:15:13.417",
"references": [
{
"source": "secalert@redhat.com",
"tags": [
"Exploit",
"Patch",
"Third Party Advisory"
],
"url": "http://blog.pi3.com.pl/?p=831"
},
{
"source": "secalert@redhat.com",
"tags": [
"Exploit",
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1928236"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Patch",
"Third Party Advisory"
],
"url": "http://blog.pi3.com.pl/?p=831"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1928236"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-94"
}
],
"source": "secalert@redhat.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-94"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-WMHX-48C3-F3GJ
Vulnerability from github – Published: 2022-05-24 17:44 – Updated: 2022-05-24 17:44
VLAI
Details
A flaw was found in the Linux kernel in versions prior to 5.10. A violation of memory access was found while detecting a padding of int3 in the linking state. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
{
"affected": [],
"aliases": [
"CVE-2021-3411"
],
"database_specific": {
"cwe_ids": [
"CWE-94"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2021-03-09T20:15:00Z",
"severity": "MODERATE"
},
"details": "A flaw was found in the Linux kernel in versions prior to 5.10. A violation of memory access was found while detecting a padding of int3 in the linking state. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"id": "GHSA-wmhx-48c3-f3gj",
"modified": "2022-05-24T17:44:02Z",
"published": "2022-05-24T17:44:02Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3411"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1928236"
},
{
"type": "WEB",
"url": "http://blog.pi3.com.pl/?p=831"
}
],
"schema_version": "1.4.0",
"severity": []
}
GSD-2021-3411
Vulnerability from gsd - Updated: 2023-12-13 01:23Details
A flaw was found in the Linux kernel in versions prior to 5.10. A violation of memory access was found while detecting a padding of int3 in the linking state. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2021-3411",
"description": "A flaw was found in the Linux kernel in versions prior to 5.10. A violation of memory access was found while detecting a padding of int3 in the linking state. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"id": "GSD-2021-3411",
"references": [
"https://www.suse.com/security/cve/CVE-2021-3411.html",
"https://ubuntu.com/security/CVE-2021-3411",
"https://linux.oracle.com/cve/CVE-2021-3411.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2021-3411"
],
"details": "A flaw was found in the Linux kernel in versions prior to 5.10. A violation of memory access was found while detecting a padding of int3 in the linking state. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"id": "GSD-2021-3411",
"modified": "2023-12-13T01:23:33.988986Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2021-3411",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Linux kernel",
"version": {
"version_data": [
{
"version_value": "Linux kernel 5.10"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A flaw was found in the Linux kernel in versions prior to 5.10. A violation of memory access was found while detecting a padding of int3 in the linking state. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-94"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1928236",
"refsource": "MISC",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1928236"
},
{
"name": "http://blog.pi3.com.pl/?p=831",
"refsource": "MISC",
"url": "http://blog.pi3.com.pl/?p=831"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "5.10",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2021-3411"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "A flaw was found in the Linux kernel in versions prior to 5.10. A violation of memory access was found while detecting a padding of int3 in the linking state. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-94"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1928236",
"refsource": "MISC",
"tags": [
"Exploit",
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1928236"
},
{
"name": "http://blog.pi3.com.pl/?p=831",
"refsource": "MISC",
"tags": [
"Exploit",
"Patch",
"Third Party Advisory"
],
"url": "http://blog.pi3.com.pl/?p=831"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.6,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 0.8,
"impactScore": 5.9
}
},
"lastModifiedDate": "2021-05-21T15:30Z",
"publishedDate": "2021-03-09T20:15Z"
}
}
}
MSRC_CVE-2021-3411
Vulnerability from csaf_microsoft - Published: 2021-03-02 00:00 - Updated: 2021-03-13 00:00Summary
A flaw was found in the Linux kernel in versions prior to 5.10. A violation of memory access was found while detecting a padding of int3 in the linking state. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
Notes
Additional Resources: To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle
Disclaimer: The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.
6.7 (Medium)
Affected products
Fixed
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 13851-12137 | — | ||
| Unresolved product id: 13852-12137 | — | ||
| Unresolved product id: 13853-12137 | — | ||
| Unresolved product id: 13854-12137 | — | ||
| Unresolved product id: 13855-12137 | — | ||
| Unresolved product id: 13856-12137 | — | ||
| Unresolved product id: 13857-12137 | — | ||
| Unresolved product id: 13858-12137 | — | ||
| Unresolved product id: 13859-12138 | — | ||
| Unresolved product id: 13860-12138 | — | ||
| Unresolved product id: 13861-12138 | — | ||
| Unresolved product id: 13862-12138 | — | ||
| Unresolved product id: 13863-12138 | — | ||
| Unresolved product id: 13864-12138 | — | ||
| Unresolved product id: 13865-12138 | — | ||
| Unresolved product id: 13866-12138 | — |
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 12137-16 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 12137-15 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 12137-14 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 12137-13 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 12137-12 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 12137-11 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 12137-10 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 12137-9 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 12138-8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 12138-7 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 12138-6 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 12138-5 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 12138-4 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 12138-3 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 12138-2 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 12138-1 | — |
Vendor Fix
fix
|
References
4 references
| URL | Category |
|---|---|
| https://msrc.microsoft.com/csaf/vex/2021/msrc_cve… | self |
| https://support.microsoft.com/lifecycle | external |
| https://www.first.org/cvss | external |
| https://msrc.microsoft.com/csaf/vex/2021/msrc_cve… | self |
{
"document": {
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Public",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
"title": "Disclaimer"
}
],
"publisher": {
"category": "vendor",
"contact_details": "secure@microsoft.com",
"name": "Microsoft Security Response Center",
"namespace": "https://msrc.microsoft.com"
},
"references": [
{
"category": "self",
"summary": "CVE-2021-3411 A flaw was found in the Linux kernel in versions prior to 5.10. A violation of memory access was found while detecting a padding of int3 in the linking state. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2021/msrc_cve-2021-3411.json"
},
{
"category": "external",
"summary": "Microsoft Support Lifecycle",
"url": "https://support.microsoft.com/lifecycle"
},
{
"category": "external",
"summary": "Common Vulnerability Scoring System",
"url": "https://www.first.org/cvss"
}
],
"title": "A flaw was found in the Linux kernel in versions prior to 5.10. A violation of memory access was found while detecting a padding of int3 in the linking state. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"tracking": {
"current_release_date": "2021-03-13T00:00:00.000Z",
"generator": {
"date": "2025-12-27T19:04:30.582Z",
"engine": {
"name": "MSRC Generator",
"version": "1.0"
}
},
"id": "msrc_CVE-2021-3411",
"initial_release_date": "2021-03-02T00:00:00.000Z",
"revision_history": [
{
"date": "2021-03-13T00:00:00.000Z",
"legacy_version": "1",
"number": "1",
"summary": "Information published."
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "1.0",
"product": {
"name": "CBL Mariner 1.0 x64",
"product_id": "12137"
}
},
{
"category": "product_version",
"name": "1.0",
"product": {
"name": "CBL Mariner 1.0 ARM",
"product_id": "12138"
}
}
],
"category": "product_name",
"name": "Azure Linux"
}
],
"category": "vendor",
"name": "Microsoft"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ckernel-5.10.57.1-1.cm1.x86_64.rpm as a component of CBL Mariner 1.0 x64",
"product_id": "12137-16"
},
"product_reference": "16",
"relates_to_product_reference": "12137"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-5.10.57.1-1.cm1.x86_64.rpm as a component of CBL Mariner 1.0 x64",
"product_id": "13851-12137"
},
"product_reference": "13851",
"relates_to_product_reference": "12137"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ckernel-devel-5.10.57.1-1.cm1.x86_64.rpm as a component of CBL Mariner 1.0 x64",
"product_id": "12137-15"
},
"product_reference": "15",
"relates_to_product_reference": "12137"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-5.10.57.1-1.cm1.x86_64.rpm as a component of CBL Mariner 1.0 x64",
"product_id": "13852-12137"
},
"product_reference": "13852",
"relates_to_product_reference": "12137"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ckernel-drivers-accessibility-5.10.57.1-1.cm1.x86_64.rpm as a component of CBL Mariner 1.0 x64",
"product_id": "12137-14"
},
"product_reference": "14",
"relates_to_product_reference": "12137"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-drivers-accessibility-5.10.57.1-1.cm1.x86_64.rpm as a component of CBL Mariner 1.0 x64",
"product_id": "13853-12137"
},
"product_reference": "13853",
"relates_to_product_reference": "12137"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ckernel-drivers-sound-5.10.57.1-1.cm1.x86_64.rpm as a component of CBL Mariner 1.0 x64",
"product_id": "12137-13"
},
"product_reference": "13",
"relates_to_product_reference": "12137"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-drivers-sound-5.10.57.1-1.cm1.x86_64.rpm as a component of CBL Mariner 1.0 x64",
"product_id": "13854-12137"
},
"product_reference": "13854",
"relates_to_product_reference": "12137"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ckernel-docs-5.10.57.1-1.cm1.x86_64.rpm as a component of CBL Mariner 1.0 x64",
"product_id": "12137-12"
},
"product_reference": "12",
"relates_to_product_reference": "12137"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-5.10.57.1-1.cm1.x86_64.rpm as a component of CBL Mariner 1.0 x64",
"product_id": "13855-12137"
},
"product_reference": "13855",
"relates_to_product_reference": "12137"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ckernel-oprofile-5.10.57.1-1.cm1.x86_64.rpm as a component of CBL Mariner 1.0 x64",
"product_id": "12137-11"
},
"product_reference": "11",
"relates_to_product_reference": "12137"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-oprofile-5.10.57.1-1.cm1.x86_64.rpm as a component of CBL Mariner 1.0 x64",
"product_id": "13856-12137"
},
"product_reference": "13856",
"relates_to_product_reference": "12137"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ckernel-tools-5.10.57.1-1.cm1.x86_64.rpm as a component of CBL Mariner 1.0 x64",
"product_id": "12137-10"
},
"product_reference": "10",
"relates_to_product_reference": "12137"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-5.10.57.1-1.cm1.x86_64.rpm as a component of CBL Mariner 1.0 x64",
"product_id": "13857-12137"
},
"product_reference": "13857",
"relates_to_product_reference": "12137"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ckernel-debuginfo-5.10.57.1-1.cm1.x86_64.rpm as a component of CBL Mariner 1.0 x64",
"product_id": "12137-9"
},
"product_reference": "9",
"relates_to_product_reference": "12137"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-5.10.57.1-1.cm1.x86_64.rpm as a component of CBL Mariner 1.0 x64",
"product_id": "13858-12137"
},
"product_reference": "13858",
"relates_to_product_reference": "12137"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ckernel-5.10.57.1-1.cm1.aarch64.rpm as a component of CBL Mariner 1.0 ARM",
"product_id": "12138-8"
},
"product_reference": "8",
"relates_to_product_reference": "12138"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-5.10.57.1-1.cm1.aarch64.rpm as a component of CBL Mariner 1.0 ARM",
"product_id": "13859-12138"
},
"product_reference": "13859",
"relates_to_product_reference": "12138"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ckernel-devel-5.10.57.1-1.cm1.aarch64.rpm as a component of CBL Mariner 1.0 ARM",
"product_id": "12138-7"
},
"product_reference": "7",
"relates_to_product_reference": "12138"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-5.10.57.1-1.cm1.aarch64.rpm as a component of CBL Mariner 1.0 ARM",
"product_id": "13860-12138"
},
"product_reference": "13860",
"relates_to_product_reference": "12138"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ckernel-drivers-accessibility-5.10.57.1-1.cm1.aarch64.rpm as a component of CBL Mariner 1.0 ARM",
"product_id": "12138-6"
},
"product_reference": "6",
"relates_to_product_reference": "12138"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-drivers-accessibility-5.10.57.1-1.cm1.aarch64.rpm as a component of CBL Mariner 1.0 ARM",
"product_id": "13861-12138"
},
"product_reference": "13861",
"relates_to_product_reference": "12138"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ckernel-drivers-sound-5.10.57.1-1.cm1.aarch64.rpm as a component of CBL Mariner 1.0 ARM",
"product_id": "12138-5"
},
"product_reference": "5",
"relates_to_product_reference": "12138"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-drivers-sound-5.10.57.1-1.cm1.aarch64.rpm as a component of CBL Mariner 1.0 ARM",
"product_id": "13862-12138"
},
"product_reference": "13862",
"relates_to_product_reference": "12138"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ckernel-docs-5.10.57.1-1.cm1.aarch64.rpm as a component of CBL Mariner 1.0 ARM",
"product_id": "12138-4"
},
"product_reference": "4",
"relates_to_product_reference": "12138"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-5.10.57.1-1.cm1.aarch64.rpm as a component of CBL Mariner 1.0 ARM",
"product_id": "13863-12138"
},
"product_reference": "13863",
"relates_to_product_reference": "12138"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ckernel-tools-5.10.57.1-1.cm1.aarch64.rpm as a component of CBL Mariner 1.0 ARM",
"product_id": "12138-3"
},
"product_reference": "3",
"relates_to_product_reference": "12138"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-5.10.57.1-1.cm1.aarch64.rpm as a component of CBL Mariner 1.0 ARM",
"product_id": "13864-12138"
},
"product_reference": "13864",
"relates_to_product_reference": "12138"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ckernel-dtb-5.10.57.1-1.cm1.aarch64.rpm as a component of CBL Mariner 1.0 ARM",
"product_id": "12138-2"
},
"product_reference": "2",
"relates_to_product_reference": "12138"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-dtb-5.10.57.1-1.cm1.aarch64.rpm as a component of CBL Mariner 1.0 ARM",
"product_id": "13865-12138"
},
"product_reference": "13865",
"relates_to_product_reference": "12138"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ckernel-debuginfo-5.10.57.1-1.cm1.aarch64.rpm as a component of CBL Mariner 1.0 ARM",
"product_id": "12138-1"
},
"product_reference": "1",
"relates_to_product_reference": "12138"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-5.10.57.1-1.cm1.aarch64.rpm as a component of CBL Mariner 1.0 ARM",
"product_id": "13866-12138"
},
"product_reference": "13866",
"relates_to_product_reference": "12138"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-3411",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"notes": [
{
"category": "general",
"text": "redhat",
"title": "Assigning CNA"
}
],
"product_status": {
"fixed": [
"13851-12137",
"13852-12137",
"13853-12137",
"13854-12137",
"13855-12137",
"13856-12137",
"13857-12137",
"13858-12137",
"13859-12138",
"13860-12138",
"13861-12138",
"13862-12138",
"13863-12138",
"13864-12138",
"13865-12138",
"13866-12138"
],
"known_affected": [
"12137-16",
"12137-15",
"12137-14",
"12137-13",
"12137-12",
"12137-11",
"12137-10",
"12137-9",
"12138-8",
"12138-7",
"12138-6",
"12138-5",
"12138-4",
"12138-3",
"12138-2",
"12138-1"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2021-3411 A flaw was found in the Linux kernel in versions prior to 5.10. A violation of memory access was found while detecting a padding of int3 in the linking state. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2021/msrc_cve-2021-3411.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-13T00:00:00.000Z",
"details": "-:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"12137-16",
"12137-15",
"12137-14",
"12137-13",
"12137-12",
"12137-11",
"12137-10",
"12137-9",
"12138-8",
"12138-7",
"12138-6",
"12138-5",
"12138-4",
"12138-3",
"12138-2",
"12138-1"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"environmentalsScore": 0.0,
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"temporalScore": 6.7,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"12137-16",
"12137-15",
"12137-14",
"12137-13",
"12137-12",
"12137-11",
"12137-10",
"12137-9",
"12138-8",
"12138-7",
"12138-6",
"12138-5",
"12138-4",
"12138-3",
"12138-2",
"12138-1"
]
}
],
"title": "A flaw was found in the Linux kernel in versions prior to 5.10. A violation of memory access was found while detecting a padding of int3 in the linking state. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability."
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…