CVE Catalog

CVE-2021-36084

Low
Published: Translated: NVD NIST

Summary

The CIL compiler in SELinux 3.2 has a use-after-free vulnerability in the __cil_verify_classperms function, called from __cil_verify_classpermission and __cil_pre_verify_helper.

Risk Assessment

This vulnerability could cause system crashes or potential arbitrary code execution by an attacker, threatening system integrity and availability.

Recommendation

It is recommended to update SELinux to version 3.3 or later, which includes a fix for this vulnerability.

Original NVD description (English source)

The CIL compiler in SELinux 3.2 has a use-after-free in __cil_verify_classperms (called from __cil_verify_classpermission and __cil_pre_verify_helper).

Vulnerability data from NVD (NIST) · CISA KEV · EPSS