CVE-2021-46908

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2021-46908

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-46908.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2021-46908

Downstream

DEBIAN-CVE-2021-46908

SUSE-SU-2024:1465-1

SUSE-SU-2024:1489-1

UBUNTU-CVE-2021-46908

Related

Published

2024-02-27T07:15:06Z

Modified

2025-08-09T19:01:29Z

Severity

5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

In the Linux kernel, the following vulnerability has been resolved:

bpf: Use correct permission flag for mixed signed bounds arithmetic

We forbid adding unknown scalars with mixed signed bounds due to the spectre v1 masking mitigation. Hence this also needs bypassspecv1 flag instead of allowptrleaks.

References

Affected packages