VYPR
Unrated severityNVD Advisory· Published May 27, 2021· Updated Aug 3, 2024

CVE-2021-33200

CVE-2021-33200

Description

kernel/bpf/verifier.c in the Linux kernel through 5.12.7 enforces incorrect limits for pointer arithmetic operations, aka CID-bb01a1bba579. This can be abused to perform out-of-bounds reads and writes in kernel memory, leading to local privilege escalation to root. In particular, there is a corner case where the off reg causes a masking direction change, which then results in an incorrect final aux->alu_limit.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

205

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.