CVSS: 3.3EPSS: 0%CPEs: 2EXPL: 1CVE-2021-36087 – libsepol: heap-based buffer overflow in ebitmap_match_any()
https://notcve.org/view.php?id=CVE-2021-36087
01 Jul 2021 — The CIL compiler in SELinux 3.2 has a heap-based buffer over-read in ebitmap_match_any (called indirectly from cil_check_neverallow). This occurs because there is sometimes a lack of checks for invalid statements in an optional block. El compilador CIL en SELinux 3.2 tiene una sobrelectura del búfer basada en el montón en ebitmap_match_any (llamado indirectamente desde cil_check_neverallow). Esto ocurre porque a veces no se comprueban las declaraciones no válidas en un bloque opcional Red Hat Advanced Clust... • https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=32675 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-125: Out-of-bounds Read •
CVSS: 3.3EPSS: 0%CPEs: 2EXPL: 1CVE-2021-36085 – libsepol: use-after-free in __cil_verify_classperms()
https://notcve.org/view.php?id=CVE-2021-36085
01 Jul 2021 — The CIL compiler in SELinux 3.2 has a use-after-free in __cil_verify_classperms (called from __verify_map_perm_classperms and hashtab_map). El compilador CIL en SELinux versión 3.2, presenta un uso de la memoria previamente liberada en la función __cil_verify_classperms (llamado desde __verify_map_perm_classperms y hashtab_map) Red Hat Advanced Cluster Management for Kubernetes 2.2.10 images Red Hat Advanced Cluster Management for Kubernetes provides the capabilities to address common challenges that admini... • https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=31124 • CWE-416: Use After Free •
CVSS: 3.3EPSS: 0%CPEs: 2EXPL: 1CVE-2021-36084 – libsepol: use-after-free in __cil_verify_classperms()
https://notcve.org/view.php?id=CVE-2021-36084
01 Jul 2021 — The CIL compiler in SELinux 3.2 has a use-after-free in __cil_verify_classperms (called from __cil_verify_classpermission and __cil_pre_verify_helper). El compilador CIL en SELinux versión 3.2,, presenta un uso de la memoria previamente liberada en la función __cil_verify_classperms (llamado desde __cil_verify_classpermission y __cil_pre_verify_helper) Red Hat Advanced Cluster Management for Kubernetes 2.2.10 images Red Hat Advanced Cluster Management for Kubernetes provides the capabilities to address comm... • https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=31065 • CWE-416: Use After Free •
CVSS: 6.1EPSS: 0%CPEs: 3EXPL: 0CVE-2020-10751 – kernel: SELinux netlink permission check bypass
https://notcve.org/view.php?id=CVE-2020-10751
26 May 2020 — A flaw was found in the Linux kernels SELinux LSM hook implementation before version 5.7, where it incorrectly assumed that an skb would only contain a single netlink message. The hook would incorrectly only validate the first netlink message in the skb and allow or deny the rest of the messages within the skb with the granted permission without further processing. Se detectó un fallo en la implementación del enlace SELinux LSM de kernels de Linux versiones anteriores a 5.7, donde se asumía incorrectamente ... • http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00022.html • CWE-345: Insufficient Verification of Data Authenticity CWE-349: Acceptance of Extraneous Untrusted Data With Trusted Data •
CVSS: 5.9EPSS: 0%CPEs: 1EXPL: 0CVE-2011-3151 – SELinux initscript misuse of touch
https://notcve.org/view.php?id=CVE-2011-3151
22 Apr 2019 — The Ubuntu SELinux initscript before version 1:0.10 used touch to create a lockfile in a world-writable directory. If the OS kernel does not have symlink protections then an attacker can cause a zero byte file to be allocated on any writable filesystem. El initscript de Ubuntu SELinux anterior a la versión 1:0.10 utiliza el tacto para crear un LockFile en un directorio de escritura mundial. Si OS kernel no tiene protecciones symlink, entonces un atacante puede provocar que un archivo de cero bytes se asigne... • https://launchpadlibrarian.net/88098106/selinux_0.10~10.04.1.debdiff • CWE-693: Protection Mechanism Failure •