CVE-2021-38300
HIGHLinux Kernel < 5.4.10 - Remote Code Execution via MIPS BPF JIT Conditional Branch
Title source: llmDescription
arch/mips/net/bpf_jit.c in the Linux kernel before 5.4.10 can generate undesirable machine code when transforming unprivileged cBPF programs, allowing execution of arbitrary code within the kernel context. This occurs because conditional branches can exceed the 128 KB limit of the MIPS architecture.
References (6)
Core 6
Core References
Mailing List, Patch, Third Party Advisory x_refsource_misc
http://www.openwall.com/lists/oss-security/2021/09/15/5
Third Party Advisory x_refsource_confirm
https://security.netapp.com/advisory/ntap-20211008-0003/
Exploit, Mailing List, Patch, Vendor Advisory x_refsource_confirm
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=37cb28ec7d3a36a5bace7063a3dba633ab110f8b
Mailing List, Vendor Advisory x_refsource_confirm
https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.14.10
Third Party Advisory mailing-list
x_refsource_mlist
https://lists.debian.org/debian-lts-announce/2022/03/msg00012.html
Third Party Advisory vendor-advisory
x_refsource_debian
https://www.debian.org/security/2022/dsa-5096
Scores
CVSS v3
7.8
EPSS
0.0017
EPSS Percentile
37.2%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
Status
published
Products (12)
debian/debian_linux
9.0
debian/debian_linux
10.0
linux/linux_kernel
3.16 - 4.14.251
netapp/cloud_backup
netapp/h300e_firmware
netapp/h300s_firmware
netapp/h410c_firmware
netapp/h410s_firmware
netapp/h500e_firmware
netapp/h500s_firmware
... and 2 more
Published
Sep 20, 2021
Tracked Since
Feb 18, 2026