Description
A flaw was found in the Linux kernel in versions before 5.4.92 in the BPF protocol. This flaw allows an attacker with a local account to leak information about kernel internal addresses. The highest threat from this vulnerability is to confidentiality.
Scores
CVSS v3
3.3
EPSS
0.0009
EPSS Percentile
24.8%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Details
CWE
CWE-119
CWE-822
Status
published
Products (5)
fedoraproject/fedora
33
linux/linux_kernel
< 5.4.92
redhat/enterprise_linux
5.0
redhat/enterprise_linux
6.0
redhat/enterprise_linux
8.0
Published
May 28, 2021
Tracked Since
Feb 18, 2026