Vulnerabilities > CVE-2020-27171 - Off-by-one Error vulnerability in multiple products

047910
CVSS 6.0 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
HIGH
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
HIGH

Summary

An issue was discovered in the Linux kernel before 5.11.8. kernel/bpf/verifier.c has an off-by-one error (with a resultant integer underflow) affecting out-of-bounds speculation on pointer arithmetic, leading to side-channel attacks that defeat Spectre mitigations and obtain sensitive information from kernel memory, aka CID-10d2bb2e6b1d.

Vulnerable Configurations

Part Description Count
OS
Linux
4876
OS
Fedoraproject
3
OS
Debian
1
OS
Canonical
4

Common Weakness Enumeration (CWE)

References