CVE-2021-4159

First published: Wed Dec 29 2021(Updated: )

A vulnerability was found in Linux kernelS EBPF verifier when handling internal data structures. Internal memory locations could be returned to userspacec. A local attacker with the permissions to insert eBPF code to the kernel can use this to leak internal kernel memory details defeating some of the exploit mitigations in place for the kernel.

Credit: secalert@redhat.com secalert@redhat.com

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• collector/nvd-index
• collector/launchpad-cve
• source/Launchpad
• agent/type
• agent/first-publish-date
• agent/remedy
• agent/weakness
• agent/severity
• agent/author
• collector/nvd-cve
• source/NVD
• agent/software-canonical-lookup
• agent/description
• collector/redhat-bugzilla
• source/Red Hat
• alias/CVE-2021-4159
• agent/references
• collector/mitre-cve
• source/MITRE
• agent/last-modified-date
• agent/event
• agent/tags
• collector/security-tracker-debian
• source/Debian
• agent/softwarecombine
• collector/usn-cve
• source/Ubuntu
• vendor/linux
• canonical/linux linux kernel
• vendor/redhat
• canonical/redhat enterprise linux
• version/redhat enterprise linux/8.0
• vendor/debian
• canonical/debian debian linux
• version/debian debian linux/10.0
• package-manager/debian