{"id":"CVE-2021-20194","details":"There is a vulnerability in the linux kernel versions higher than 5.2 (if kernel compiled with config params CONFIG_BPF_SYSCALL=y , CONFIG_BPF=y , CONFIG_CGROUPS=y , CONFIG_CGROUP_BPF=y , CONFIG_HARDENED_USERCOPY not set, and BPF hook to getsockopt is registered). As result of BPF execution, the local user can trigger bug in __cgroup_bpf_run_filter_getsockopt() function that can lead to heap overflow (because of non-hardened usercopy). The impact of attack could be deny of service or possibly privileges escalation.","modified":"2026-03-14T10:37:58.486074Z","published":"2021-02-23T23:15:13.100Z","related":["ALSA-2021:4356","CGA-6hcv-57fx-wvg9","MGASA-2021-0099","MGASA-2021-0100"],"references":[{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20210326-0003/"},{"type":"FIX","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1912683"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-20194.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"4.4"}]},{"events":[{"introduced":"0"},{"last_affected":"4.5"}]},{"events":[{"introduced":"0"},{"last_affected":"4.6"}]},{"events":[{"introduced":"0"},{"last_affected":"8.0"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}