CVE STALKER

CVE-2021-3490

CVSS
DESCRIPTIONThe eBPF ALU32 bounds tracking for bitwise ops (AND, OR and XOR) in the Linux kernel did not properly update 32-bit bounds, which could be turned into out of bounds reads and writes in the Linux kernel and therefore, arbitrary code execution. This issue was fixed via commit 049c4e13714e ("bpf: Fix alu32 const subreg bound tracking on bitwise operations") (v5.13-rc4) and backported to the stable kernels in v5.12.4, v5.11.21, and v5.10.37. The AND/OR issues were introduced by commit 3f50f132d840 ("bpf: Verifier, do explicit ALU32 bounds tracking") (5.7-rc1) and the XOR variant was introduced by 2921c90d4718 ("bpf:Fix a verifier failure with xor") ( 5.10-rc1).
HEAT SCORE314

WORDS

TWEETS

DATE TWEETS USER
2021-06-16 07:41:43New post from https://t.co/9KYxtdZjkl (CVE-2021-3490 (ubuntu_linux, linux_kernel)) has been published on https://t.co/WdkboSmEdi http://www.sesin.at https://www.sesin.at/2021/06/16/cve-2021-3490-ubuntu_linux-linux_kernel/www_sesin_at
2021-06-16 07:41:40New post from https://t.co/uXvPWJy6tj (CVE-2021-3490 (ubuntu_linux, linux_kernel)) has been published on https://t.co/tD0nf23tXq http://www.sesin.at https://www.sesin.at/2021/06/16/cve-2021-3490-ubuntu_linux-linux_kernel/WolfgangSesin
2021-06-15 08:00:18🔴LINUX🔴 Múltiples vulnerabilidades de severidad alta en productos LINUX: CVE-2021-3489,CVE-2021-3490 Más info en… https://t.co/wIYy34b06d https://twitter.com/i/web/status/1404709268054544386GrupoICA_Ciber
2021-06-14 16:40:22🚨 NEW: CVE-2021-3490 🚨 The eBPF ALU32 bounds tracking for bitwise ops (AND, OR and XOR) in the Linux kernel did not… https://t.co/WHnpqyiY9i https://twitter.com/i/web/status/1404476954045206528threatintelctr
2021-06-14 07:10:09New post from https://t.co/uXvPWJy6tj (CVE-2021-3490 (linux_kernel, ubuntu_linux)) has been published on https://t.co/vvybZAXeDd http://www.sesin.at https://www.sesin.at/2021/06/14/cve-2021-3490-linux_kernel-ubuntu_linux/WolfgangSesin
2021-06-14 07:10:08New post from https://t.co/9KYxtdZjkl (CVE-2021-3490 (linux_kernel, ubuntu_linux)) has been published on https://t.co/D5ktfZ05Bh http://www.sesin.at https://www.sesin.at/2021/06/14/cve-2021-3490-linux_kernel-ubuntu_linux/www_sesin_at
2021-06-07 17:40:52New post from https://t.co/9KYxtdZjkl (CVE-2021-3490) has been published on https://t.co/o3fjBCE8Mn http://www.sesin.at https://www.sesin.at/2021/06/07/cve-2021-3490/www_sesin_at
2021-06-07 17:40:39New post from https://t.co/uXvPWJy6tj (CVE-2021-3490) has been published on https://t.co/jKdUBP999e http://www.sesin.at https://www.sesin.at/2021/06/07/cve-2021-3490/WolfgangSesin
2021-06-06 07:20:10CVE-2021-3490 The eBPF ALU32 bounds tracking for bitwise ops (AND, OR and XOR) in the Linux kernel did not properly… https://t.co/T2fAJ7okrb https://twitter.com/i/web/status/1401436256769355780threatmeter
2021-06-04 06:20:08CVE Liste write "CVE-2021-3490" See full original article: https://t.co/vWRHkoATps All our feeds: https://t.co/EOLcNJGCHf https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3490 https://secnews.physaphae.frInfoSecPhysa
2021-06-04 06:10:09Hi, I'm CVE-2021-3490. I was never good with numbers though, so you can call me Brisk Talpa https://t.co/CNT21ZGUmG https://nvd.nist.gov/vuln/detail/CVE-2021-3490vulnonym
2021-06-04 02:50:06CVE-2021-3490 The eBPF ALU32 bounds tracking for bitwise ops (AND, OR and XOR) in the Linux kernel did not properly… https://t.co/HTBnpmin6o https://twitter.com/i/web/status/1400644799229796360CVEnew
2021-06-04 01:50:04CVE-2021-3490 : The eBPF ALU32 bounds tracking for bitwise ops AND, OR and XOR in the #Linux #kernel did not prop… https://t.co/Ydy0HrCxwv https://twitter.com/i/web/status/1400629691598397442CVEreport
2021-05-29 02:30:05Linux Kernel eBPF Vulnerability CVE-2021-3490 https://t.co/cIuXVWyGQi https://ubuntu.com/security/CVE-2021-3490korp_sec
2021-05-29 00:20:09tried something new and wrote an LPE exploit for CVE-2021-3490, a bug in the Linux Kernel eBPF verifier. was fun an… https://t.co/yLSL8VIKe9 https://twitter.com/i/web/status/1398431515051167749chompie1337
2021-05-13 05:10:04Linux Kernel の eBPF の処理に特権を奪われる問題 (CVE-2021-3490) [38906] https://t.co/N6WwcOZn8t #SIDfm #脆弱性情報 https://sid.softek.jp/content/show/38906softek_jp
2021-05-12 05:20:06called it! 🤭 CVE-2021-3490: https://t.co/xblWJHi5zR nice work @_manfp ! https://t.co/mAhcwETGLe https://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf.git/commit/?id=049c4e13714ecbca567b4d5f6d563f05d431c80e https://twitter.com/bl4sty/status/1379489097274822659bl4sty
2021-05-11 20:50:02SIOSセキュリティブログ(ゲストブログ)を更新しました。 Linux Kernelの複数の脆弱性(CVE-2021-3489, CVE-2021-3490, CVE-2021-3491) #sios_tech… https://t.co/NPRjcpYUPm https://twitter.com/i/web/status/1392220113286287360omokazuki
2021-05-11 19:40:20CVE-2021-3490 A security issue was found in the Linux kernel. It was discovered that eBPF ALU32 bounds tracking f… https://t.co/ec3kxkaJux https://twitter.com/i/web/status/1392200471062929413VulmonFeeds