CVE-2021-38300

arch/mips/net/bpf_jit.c in the Linux kernel before 5.4.10 can generate undesirable machine code when transforming unprivileged cBPF programs, allowing execution of arbitrary code within the kernel context. This occurs because conditional branches can exceed the 128 KB limit of the MIPS architecture.

Published: Sep 20, 2021
Updated: Apr 14, 2023
CVE: CVE-2021-38300
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.8
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
linux / linux_kernel	5.11	5.14.10
linux / linux_kernel	3.16	4.14.251
linux / linux_kernel	4.15	4.19.211
linux / linux_kernel	4.20	5.4.153
linux / linux_kernel	5.5	5.10.71
debian / debian_linux	9.0	9.0.x
debian / debian_linux	10.0	10.0.x

http://www.openwall.com/lists/oss-security/2021/09/15/5
https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.14.10
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=37cb28ec7d3a36a5bace7063a3dba633ab110f8b
https://lists.debian.org/debian-lts-announce/2022/03/msg00012.html
https://security.netapp.com/advisory/ntap-20211008-0003/
https://www.debian.org/security/2022/dsa-5096

Vulnerability Database

289,697

CVE-2021-38300