CVE Catalog
CVE-2021-36084
LowSummary
The CIL compiler in SELinux 3.2 has a use-after-free vulnerability in the __cil_verify_classperms function, called from __cil_verify_classpermission and __cil_pre_verify_helper.
Risk Assessment
This vulnerability could cause system crashes or potential arbitrary code execution by an attacker, threatening system integrity and availability.
Recommendation
It is recommended to update SELinux to version 3.3 or later, which includes a fix for this vulnerability.
Original NVD description (English source)
The CIL compiler in SELinux 3.2 has a use-after-free in __cil_verify_classperms (called from __cil_verify_classpermission and __cil_pre_verify_helper).

