[prev in list] [next in list] [prev in thread] [next in thread]
List: oss-security
Subject: [oss-security] CVE-2021-3411 kernel: broken KRETPROBES reports corruption of .text section while run
From: Rohit Keshri <rkeshri () redhat ! com>
Date: 2021-02-19 12:36:27
Message-ID: CAKx+4-rj0qAZMmpuW9txO6ep1rkFD6dJa0nviEfmDmo7NUvsPg () mail ! gmail ! com
[Download RAW message or body]
Hello Team,
A violation of memory access flaw was found while detecting a padding of
int3 in the linking state in function can_optimize in
arch/x86/kernel/kprobes/opt.c. In this problem a local attacker with a
special user privilege may cause a threat to a system Integrity and
Confidentiality, and may even lead to a denial of service problem.
'CVE-2021-3411' was assigned by Red Hat.
Credit: Adam 'pi3' Zabrocki
References:
https://www.mail-archive.com/linux-kernel@vger.kernel.org/msg2410570.html
https://lists.openwall.net/linux-kernel/2020/12/11/265
http://blog.pi3.com.pl/?p=831
Regards,
..
Rohit Keshri / Red Hat Product Security Team
PGP: OX01BC 858A 07B7 15C8 EF33 BFE2 2EEB 0CBC 84A4 4C2D
secalert@redhat.com for urgent response
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic