UBUNTU-CVE-2021-3600

Advisory lineage Upstream: 1 Downstream: 2
Upstream
CVE-2021-3600
Published: 22 Jun 2021, 00:00
Last modified:20 May 2026, 16:05

Vulnerability Summary

Overall Risk (default)
medium
31/100
CVSS Score
7.8 HIGH
3.1 (osv_ubuntu)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

22 Jun 2021, 00:00
Published
Vulnerability first disclosed
20 May 2026, 16:05
Last Modified
Vulnerability information updated

Description

It was discovered that the eBPF implementation in the Linux kernel did not properly track bounds information for 32 bit registers when performing div and mod operations. A local attacker could use this to possibly execute arbitrary code.

CVSS Metrics

  • v3.1HIGHScore: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Systems

  • ubuntulinux

    < 4.15.0-147.151 | < 5.4.0-70.78

  • ubuntulinux-aws

    < 4.15.0-1106.113 | < 5.4.0-1041.43

  • ubuntulinux-aws-5.0

    all

  • ubuntulinux-aws-5.3

    all

  • ubuntulinux-aws-5.4

    < 5.4.0-1041.43~18.04.1

  • ubuntulinux-aws-fips

    < 4.15.0-2048.50 | all | < 5.4.0-1069.73+fips2

  • ubuntulinux-aws-hwe

    < 4.15.0-1106.113~16.04.1

  • ubuntulinux-azure

    < 4.15.0-1118.131~14.04.1 | < 4.15.0-1118.131~16.04.1 | all | < 5.4.0-1043.45

  • ubuntulinux-azure-4.15

    < 4.15.0-1118.131

  • ubuntulinux-azure-5.3

    all

  • ubuntulinux-azure-5.4

    < 5.4.0-1043.45~18.04.1

  • ubuntulinux-azure-edge

    all

  • ubuntulinux-azure-fips

    < 4.15.0-2030.33 | all | < 5.4.0-1073.76+fips1

  • ubuntulinux-dell300x

    < 4.15.0-1022.26

  • ubuntulinux-fips

    all | < 4.15.0-1063.71

  • ubuntulinux-gcp

    < 4.15.0-1103.116~16.04.1 | all | < 5.4.0-1040.43

  • ubuntulinux-gcp-4.15

    < 4.15.0-1103.116

  • ubuntulinux-gcp-5.3

    all

  • ubuntulinux-gcp-5.4

    < 5.4.0-1040.43~18.04.1

  • ubuntulinux-gcp-edge

    all

  • ubuntulinux-gcp-fips

    all | < 5.4.0-1067.71~20.04.1

  • ubuntulinux-gke

    < 5.4.0-1039.41

  • ubuntulinux-gke-4.15

    all

  • ubuntulinux-gke-5.3

    < 5.3.0-1041.44

  • ubuntulinux-gke-5.4

    < 5.4.0-1039.41~18.04.1

  • ubuntulinux-gkeop

    < 5.4.0-1012.13

  • ubuntulinux-gkeop-5.4

    < 5.4.0-1012.13~18.04.1

  • ubuntulinux-hwe

    < 4.15.0-147.151~16.04.1 | all

  • ubuntulinux-hwe-5.4

    < 5.4.0-70.78~18.04.1

  • ubuntulinux-hwe-5.8

    < 5.8.0-48.54~20.04.1

  • ubuntulinux-hwe-edge

    all | all

  • ubuntulinux-intel-iot-realtime

    all

  • ubuntulinux-kvm

    < 4.15.0-1094.96 | < 5.4.0-1036.37

  • ubuntulinux-nvidia

    all

  • ubuntulinux-oem

    all

  • ubuntulinux-oem-5.10

    < 5.10.0-1017.18

  • ubuntulinux-oem-5.6

    all

  • ubuntulinux-oracle

    < 4.15.0-1075.83~16.04.1 | < 4.15.0-1075.83 | < 5.4.0-1041.44

  • ubuntulinux-oracle-5.0

    all

  • ubuntulinux-oracle-5.3

    all

  • ubuntulinux-oracle-5.4

    < 5.4.0-1041.44~18.04.1

  • ubuntulinux-raspi

    < 5.4.0-1032.35

  • ubuntulinux-raspi-5.4

    < 5.4.0-1032.35~18.04.1

  • ubuntulinux-raspi-realtime

    all

  • ubuntulinux-raspi2

    < 4.15.0-1089.94 | all

  • ubuntulinux-raspi2-5.3

    < 5.3.0-1038.40

  • ubuntulinux-realtime

    all

  • ubuntulinux-riscv

    all

  • ubuntulinux-riscv-5.8

    < 5.8.0-20.22~20.04.1

  • ubuntulinux-snapdragon

    < 4.15.0-1106.115

References (4)