In the Linux kernel through 5.13.7, an unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because the protection mechanism neglects the possibility of uninitialized memory locations on the BPF stack.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2021-08-02T04:02:40
Updated: 2024-08-04T00:12:50.411Z
Reserved: 2021-06-10T00:00:00
Link: CVE-2021-34556
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-08-02T05:15:07.663
Modified: 2024-11-21T06:10:40.220
Link: CVE-2021-34556
Redhat