CVE-2021-36084: Use After Free

Reference Links

• https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=31065
• https://github.com/SELinuxProject/selinux/commit/f34d3d30c8325e4847a6b696fe7a3936a8a361f3
• https://github.com/google/oss-fuzz-vulns/blob/main/vulns/selinux/OSV-2021-417.yaml
• https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U7ZYR3PIJ75N6U2IONJWCKZ5L2NKJTGR/
• https://exchange.xforce.ibmcloud.com/vulnerabilities/204792
• https://www.ibm.com/support/pages/node/6574787 (Advisory)
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U7ZYR3PIJ75N6U2IONJWCKZ5L2NKJTGR/

Parent vulnerabilities

(Appears in the following advisories)

• IBM-6574787

Frequently Asked Questions

• What is CVE-2021-36084?

  CVE-2021-36084 is a vulnerability in SELinux that allows a local attacker to cause a denial of service.

• How does CVE-2021-36084 work?

  CVE-2021-36084 is caused by a use-after-free vulnerability in __cil_verify_classperms, which can be exploited by sending a specially-crafted request.

• What is the severity of CVE-2021-36084?

  The severity of CVE-2021-36084 is medium, with a CVSS score of 6.2.

• How can I fix CVE-2021-36084 in IBM QRadar SIEM 7.5.0 GA?

  To fix CVE-2021-36084 in IBM QRadar SIEM 7.5.0 GA, you can apply the patch available from IBM Support.

• How can I fix CVE-2021-36084 in IBM QRadar SIEM 7.4.3 GA - 7.4.3 FP4?

  To fix CVE-2021-36084 in IBM QRadar SIEM 7.4.3 GA - 7.4.3 FP4, you can apply the patch available from IBM Support.

• How can I fix CVE-2021-36084 in IBM QRadar SIEM 7.3.3 GA - 7.3.3 FP10?

  To fix CVE-2021-36084 in IBM QRadar SIEM 7.3.3 GA - 7.3.3 FP10, you can apply the patch available from IBM Support.