Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2021-36087

Опубликовано: 01 июл. 2021
Источник: nvd
CVSS3: 3.3
CVSS2: 2.1
EPSS Низкий

Описание

The CIL compiler in SELinux 3.2 has a heap-based buffer over-read in ebitmap_match_any (called indirectly from cil_check_neverallow). This occurs because there is sometimes a lack of checks for invalid statements in an optional block.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:o:selinux_project:selinux:3.2:*:*:*:*:*:*:*
Конфигурация 2
cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*

EPSS

Процентиль: 4%
0.0002
Низкий

3.3 Low

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-125

Связанные уязвимости

ubuntu логотип

CVE-2021-36087

CVSS3: 3.3
ubuntu
около 4 лет назад

The CIL compiler in SELinux 3.2 has a heap-based buffer over-read in ebitmap_match_any (called indirectly from cil_check_neverallow). This occurs because there is sometimes a lack of checks for invalid statements in an optional block.

redhat логотип

CVE-2021-36087

CVSS3: 3.3
redhat
больше 4 лет назад

The CIL compiler in SELinux 3.2 has a heap-based buffer over-read in ebitmap_match_any (called indirectly from cil_check_neverallow). This occurs because there is sometimes a lack of checks for invalid statements in an optional block.

debian логотип

CVE-2021-36087

CVSS3: 3.3
debian
около 4 лет назад

The CIL compiler in SELinux 3.2 has a heap-based buffer over-read in e ...

github логотип

GHSA-xjc2-37xp-26m5

github
около 3 лет назад

The CIL compiler in SELinux 3.2 has a heap-based buffer over-read in ebitmap_match_any (called indirectly from cil_check_neverallow). NOTE: bad0a746e9f4cf260dedba5828d9645d50176aac is cited in the OSV "fixed" field but does not have a code change.

rocky логотип

RLSA-2021:4513

rocky
больше 3 лет назад

Moderate: libsepol security update

EPSS

Процентиль: 4%
0.0002
Низкий

3.3 Low

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-125