References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to [email protected].

Change History

In the Linux kernel, the following vulnerability has been resolved:

capabilities: fix undefined behavior in bit shift for CAP_TO_MASK

Shifting signed 32-bit value by 31 bits is undefined, so changing
significant bit to unsigned. The UBSAN warning calltrace like below:

UBSAN: shift-out-of-bounds in security/commoncap.c:1252:2
left shift of 1 by 31 places cannot be represented in type 'int'
Call Trace:
 <TASK>
 dump_stack_lvl+0x7d/0xa5
 dump_stack+0x15/0x1b
 ubsan_epilogue+0xe/0x4e
 __ubsan_han

https://git.kernel.org/stable/c/151dc8087b5609e53b069c068e3f3ee100efa586

https://git.kernel.org/stable/c/27bdb134c043ff32c459d98f16550d0ffa0b3c34

https://git.kernel.org/stable/c/46653972e3ea64f79e7f8ae3aa41a4d3fdb70a13

https://git.kernel.org/stable/c/5661f111a1616ac105ec8cec81bff99b60f847ac

https://git.kernel.org/stable/c/5b79fa628e2ab789e629a83cd211ef9b4c1a593e

https://git.kernel.org/stable/c/65b0bc7a0690861812ade523d19f82688ab819dc

https://git.kernel.org/stable/c/dbaab08c8677d598244d21afb7818e44e1c5d826

https://git.kernel.org/stable/c/fcbd2b336834bd24e1d9454ad5737856470c10d7