Skip to main content
CVE-2021-36086 LOW POC PATCH Monitor

The CIL compiler in SELinux 3.2 has a use-after-free in cil_reset_classpermission (called from cil_reset_classperms_set and cil_reset_classperms_list). Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. Public exploit code available.

Memory Corruption Use After Free Information Disclosure Debian Linux Active Iq Unified Manager +7
NVD GitHub
CVSS 3.1
3.3
EPSS
0.0%
CVE-2021-36087 LOW POC PATCH Monitor

The CIL compiler in SELinux 3.2 has a heap-based buffer over-read in ebitmap_match_any (called indirectly from cil_check_neverallow). Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. Public exploit code available.

Buffer Overflow Information Disclosure Selinux Fedora
NVD GitHub
CVSS 3.1
3.3
EPSS
0.5%
CVE-2021-36085 LOW POC PATCH Monitor

The CIL compiler in SELinux 3.2 has a use-after-free in __cil_verify_classperms (called from __verify_map_perm_classperms and hashtab_map). Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. Public exploit code available.

Use After Free Memory Corruption Information Disclosure Selinux Fedora
NVD GitHub
CVSS 3.1
3.3
EPSS
0.5%
CVE-2021-36084 LOW POC PATCH Monitor

The CIL compiler in SELinux 3.2 has a use-after-free in __cil_verify_classperms (called from __cil_verify_classpermission and __cil_pre_verify_helper). Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Use After Free Memory Corruption Information Disclosure Selinux Fedora
NVD GitHub
CVSS 3.1
3.3
EPSS
0.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy