Skip to content

kernel CVE-2021-3347

High
tjkirch published GHSA-mq26-2rrr-55xf Mar 2, 2021

Package

kernel (bottlerocket)

Affected versions

< 1.0.6

Patched versions

1.0.6

Description

Priority-inheritance futexes were found to have a kernel stack use-after-free during fault handling, allowing local users to execute code in the kernel.

Severity

High

CVE ID

CVE-2021-3347

Weaknesses

No CWEs