Vulnerabilities

CVE-2021-36087

by Fred · 30/06/2021

The CIL compiler in SELinux 3.2 has a heap-based buffer over-read in ebitmap_match_any (called indirectly from cil_check_neverallow). This occurs because there is sometimes a lack of checks for invalid statements in an optional block.

Date published : 2021-06-30

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U7ZYR3PIJ75N6U2IONJWCKZ5L2NKJTGR/

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=32675

Similar

Tags: Cybersecurity Alert