PEBS Status Mishandling Vulnerability in Linux Kernel on Haswell CPUs

PEBS Status Mishandling Vulnerability in Linux Kernel on Haswell CPUs

CVE-2021-28971 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

In intel_pmu_drain_pebs_nhm in arch/x86/events/intel/ds.c in the Linux kernel through 5.11.8 on some Haswell CPUs, userspace applications (such as perf-fuzzer) can cause a system crash because the PEBS status in a PEBS record is mishandled, aka CID-d88d05a9e0b6.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.