CVE-2021-36087
- Source
- https://cve.org/CVERecord?id=CVE-2021-36087
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-36087.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2021-36087
- Downstream
- Related
- Published
- 2021-07-01T03:15:08.817Z
- Modified
- 2026-01-30T02:46:01.077695Z
- Severity
-
- 3.3 (Low) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L CVSS Calculator
- Summary
- [none]
- Details
-
The CIL compiler in SELinux 3.2 has a heap-based buffer over-read in ebitmapmatchany (called indirectly from cilcheckneverallow). This occurs because there is sometimes a lack of checks for invalid statements in an optional block.
- References
-
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U7ZYR3PIJ75N6U2IONJWCKZ5L2NKJTGR/
- https://lore.kernel.org/selinux/CAEN2sdqJKHvDzPnxS-J8grU8fSf32DDtx=kyh84OsCq_Vm+yaQ%40mail.gmail.com/T/
- https://lists.debian.org/debian-lts-announce/2024/10/msg00021.html
- https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=32675
- https://github.com/SELinuxProject/selinux/commit/340f0eb7f3673e8aacaf0a96cbfcd4d12a405521
- https://github.com/google/oss-fuzz-vulns/blob/main/vulns/selinux/OSV-2021-585.yaml
- https://security.netapp.com/advisory/ntap-20250207-0004/
- https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=32675
- https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=32675
- https://github.com/SELinuxProject/selinux/commit/340f0eb7f3673e8aacaf0a96cbfcd4d12a405521
- https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=32675
Affected packages
Git / github.com/selinuxproject/selinux
Affected ranges
- Type
- GIT
- Repo
- https://github.com/selinuxproject/selinux
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
Other
20080909
20090403
20090731
20091123
20100525
20101221
20110727
20120216
20120924
20130423
20131030
20131030_1
20131030_2
20131030_3
20131030_4
20140506
20140826-rc1
20140826-rc2
20140826-rc3
20140826-rc4
20140826-rc5
20140826-rc6
20140826-rc7
20150202
20160107
20160223
20160930
20161006
20161014
20170609
20170616
20170623
20170630
20170718
20170728
20170804
20180419
20180426
20180510
20180524
20190125
20190301
20190315
20191031
20191122
20191204
20200518
20200619
20200710
before_splitpolicycoreutils
3.*
3.2
3.2-rc1
3.2-rc2
3.2-rc3
checkpolicy-2.*
checkpolicy-2.2
checkpolicy-2.3
checkpolicy-2.3-rc1
checkpolicy-2.4
checkpolicy-2.4-rc3
checkpolicy-2.4-rc4
checkpolicy-2.4-rc5
checkpolicy-2.4-rc6
checkpolicy-2.4-rc7
checkpolicy-2.5
checkpolicy-2.5-rc1
checkpolicy-2.6
checkpolicy-2.6-rc1
checkpolicy-2.6-rc2
checkpolicy-2.7
checkpolicy-2.7-rc1
checkpolicy-2.7-rc2
checkpolicy-2.7-rc3
checkpolicy-2.7-rc4
checkpolicy-2.7-rc5
checkpolicy-2.7-rc6
checkpolicy-2.8
checkpolicy-2.8-rc1
checkpolicy-2.8-rc2
checkpolicy-2.8-rc3
checkpolicy-2.9
checkpolicy-3.*
checkpolicy-3.0
checkpolicy-3.0-rc1
checkpolicy-3.1
checkpolicy-3.1-rc2
checkpolicy-3.2
checkpolicy-3.2-rc1
checkpolicy-3.2-rc2
checkpolicy-3.2-rc3
libselinux-2.*
libselinux-2.2
libselinux-2.2.1
libselinux-2.2.2
libselinux-2.3
libselinux-2.3-rc1
libselinux-2.4
libselinux-2.4-rc2
libselinux-2.4-rc3
libselinux-2.4-rc4
libselinux-2.4-rc5
libselinux-2.4-rc6
libselinux-2.4-rc7
libselinux-2.5
libselinux-2.5-rc1
libselinux-2.6
libselinux-2.6-rc1
libselinux-2.6-rc2
libselinux-2.7
libselinux-2.7-rc1
libselinux-2.7-rc2
libselinux-2.7-rc3
libselinux-2.7-rc4
libselinux-2.7-rc5
libselinux-2.7-rc6
libselinux-2.8
libselinux-2.8-rc1
libselinux-2.8-rc2
libselinux-2.8-rc3
libselinux-2.9
libselinux-3.*
libselinux-3.0
libselinux-3.0-rc1
libselinux-3.1
libselinux-3.1-rc2
libselinux-3.2
libselinux-3.2-rc1
libselinux-3.2-rc2
libselinux-3.2-rc3
libsemanage-2.*
libsemanage-2.2
libsemanage-2.3
libsemanage-2.3-rc1
libsemanage-2.4
libsemanage-2.4-rc2
libsemanage-2.4-rc3
libsemanage-2.4-rc4
libsemanage-2.4-rc5
libsemanage-2.4-rc6
libsemanage-2.4-rc7
libsemanage-2.5
libsemanage-2.5-rc1
libsemanage-2.6
libsemanage-2.6-rc1
libsemanage-2.6-rc2
libsemanage-2.7
libsemanage-2.7-rc1
libsemanage-2.7-rc2
libsemanage-2.7-rc3
libsemanage-2.7-rc4
libsemanage-2.7-rc5
libsemanage-2.7-rc6
libsemanage-2.8
libsemanage-2.8-rc1
libsemanage-2.8-rc2
libsemanage-2.8-rc3
libsemanage-2.9
libsemanage-3.*
libsemanage-3.0
libsemanage-3.0-rc1
libsemanage-3.1
libsemanage-3.1-rc2
libsemanage-3.2
libsemanage-3.2-rc1
libsemanage-3.2-rc2
libsemanage-3.2-rc3
libsepol-2.*
libsepol-2.2
libsepol-2.3
libsepol-2.3-rc1
libsepol-2.4
libsepol-2.4-rc2
libsepol-2.4-rc3
libsepol-2.4-rc4
libsepol-2.4-rc5
libsepol-2.4-rc6
libsepol-2.4-rc7
libsepol-2.5
libsepol-2.5-rc1
libsepol-2.6
libsepol-2.6-rc1
libsepol-2.6-rc2
libsepol-2.7
libsepol-2.7-rc1
libsepol-2.7-rc2
libsepol-2.7-rc3
libsepol-2.7-rc4
libsepol-2.7-rc5
libsepol-2.7-rc6
libsepol-2.8
libsepol-2.8-rc1
libsepol-2.8-rc2
libsepol-2.8-rc3
libsepol-2.9
libsepol-3.*
libsepol-3.0
libsepol-3.0-rc1
libsepol-3.1
libsepol-3.1-rc2
libsepol-3.2
libsepol-3.2-rc1
libsepol-3.2-rc2
libsepol-3.2-rc3
mcstrans-2.*
mcstrans-2.7
mcstrans-2.7-rc1
mcstrans-2.7-rc2
mcstrans-2.7-rc3
mcstrans-2.7-rc4
mcstrans-2.7-rc5
mcstrans-2.7-rc6
mcstrans-2.8
mcstrans-2.8-rc1
mcstrans-2.8-rc2
mcstrans-2.8-rc3
mcstrans-2.9
mcstrans-3.*
mcstrans-3.0
mcstrans-3.0-rc1
mcstrans-3.1
mcstrans-3.1-rc2
mcstrans-3.2
mcstrans-3.2-rc1
mcstrans-3.2-rc2
mcstrans-3.2-rc3
policycoreutils-2.*
policycoreutils-2.2
policycoreutils-2.2.1
policycoreutils-2.2.2
policycoreutils-2.2.3
policycoreutils-2.2.4
policycoreutils-2.2.5
policycoreutils-2.3
policycoreutils-2.3-rc1
policycoreutils-2.4
policycoreutils-2.4-rc2
policycoreutils-2.4-rc3
policycoreutils-2.4-rc4
policycoreutils-2.4-rc5
policycoreutils-2.4-rc6
policycoreutils-2.4-rc7
policycoreutils-2.5
policycoreutils-2.5-rc1
policycoreutils-2.6
policycoreutils-2.6-rc1
policycoreutils-2.6-rc2
policycoreutils-2.7
policycoreutils-2.7-rc1
policycoreutils-2.7-rc2
policycoreutils-2.7-rc3
policycoreutils-2.7-rc4
policycoreutils-2.7-rc5
policycoreutils-2.7-rc6
policycoreutils-2.8
policycoreutils-2.8-rc1
policycoreutils-2.8-rc2
policycoreutils-2.8-rc3
policycoreutils-2.9
policycoreutils-3.*
policycoreutils-3.0
policycoreutils-3.0-rc1
policycoreutils-3.1
policycoreutils-3.1-rc2
policycoreutils-3.2
policycoreutils-3.2-rc1
policycoreutils-3.2-rc2
policycoreutils-3.2-rc3
restorecond-2.*
restorecond-2.7
restorecond-2.7-rc1
restorecond-2.7-rc2
restorecond-2.7-rc3
restorecond-2.7-rc4
restorecond-2.7-rc5
restorecond-2.7-rc6
restorecond-2.8
restorecond-2.8-rc1
restorecond-2.8-rc2
restorecond-2.8-rc3
restorecond-2.9
restorecond-3.*
restorecond-3.0
restorecond-3.0-rc1
restorecond-3.1
restorecond-3.1-rc2
restorecond-3.2
restorecond-3.2-rc1
restorecond-3.2-rc2
restorecond-3.2-rc3
secilc-2.*
secilc-2.5
secilc-2.5-rc1
secilc-2.6
secilc-2.6-rc1
secilc-2.6-rc2
secilc-2.7
secilc-2.7-rc1
secilc-2.7-rc2
secilc-2.7-rc3
secilc-2.7-rc4
secilc-2.7-rc5
secilc-2.7-rc6
secilc-2.8
secilc-2.8-rc1
secilc-2.8-rc2
secilc-2.8-rc3
secilc-2.9
secilc-3.*
secilc-3.0
secilc-3.0-rc1
secilc-3.1
secilc-3.1-rc2
secilc-3.2
secilc-3.2-rc1
secilc-3.2-rc2
secilc-3.2-rc3
selinux-dbus-2.*
selinux-dbus-2.7
selinux-dbus-2.7-rc1
selinux-dbus-2.7-rc2
selinux-dbus-2.7-rc3
selinux-dbus-2.7-rc4
selinux-dbus-2.7-rc5
selinux-dbus-2.7-rc6
selinux-dbus-2.8
selinux-dbus-2.8-rc1
selinux-dbus-2.8-rc2
selinux-dbus-2.8-rc3
selinux-dbus-2.9
selinux-dbus-3.*
selinux-dbus-3.0
selinux-dbus-3.0-rc1
selinux-dbus-3.1
selinux-dbus-3.1-rc2
selinux-dbus-3.2
selinux-dbus-3.2-rc1
selinux-dbus-3.2-rc2
selinux-dbus-3.2-rc3
selinux-gui-2.*
selinux-gui-2.7
selinux-gui-2.7-rc1
selinux-gui-2.7-rc2
selinux-gui-2.7-rc3
selinux-gui-2.7-rc4
selinux-gui-2.7-rc5
selinux-gui-2.7-rc6
selinux-gui-2.8
selinux-gui-2.8-rc1
selinux-gui-2.8-rc2
selinux-gui-2.8-rc3
selinux-gui-2.9
selinux-gui-3.*
selinux-gui-3.0
selinux-gui-3.0-rc1
selinux-gui-3.1
selinux-gui-3.1-rc2
selinux-gui-3.2
selinux-gui-3.2-rc1
selinux-gui-3.2-rc2
selinux-gui-3.2-rc3
selinux-python-2.*
selinux-python-2.7
selinux-python-2.7-rc1
selinux-python-2.7-rc2
selinux-python-2.7-rc3
selinux-python-2.7-rc4
selinux-python-2.7-rc5
selinux-python-2.7-rc6
selinux-python-2.8
selinux-python-2.8-rc1
selinux-python-2.8-rc2
selinux-python-2.8-rc3
selinux-python-2.9
selinux-python-3.*
selinux-python-3.0
selinux-python-3.0-rc1
selinux-python-3.1
selinux-python-3.1-rc2
selinux-python-3.2
selinux-python-3.2-rc1
selinux-python-3.2-rc2
selinux-python-3.2-rc3
selinux-sandbox-2.*
selinux-sandbox-2.7
selinux-sandbox-2.7-rc1
selinux-sandbox-2.7-rc2
selinux-sandbox-2.7-rc3
selinux-sandbox-2.7-rc4
selinux-sandbox-2.7-rc5
selinux-sandbox-2.7-rc6
selinux-sandbox-2.8
selinux-sandbox-2.8-rc1
selinux-sandbox-2.8-rc2
selinux-sandbox-2.8-rc3
selinux-sandbox-2.9
selinux-sandbox-3.*
selinux-sandbox-3.0
selinux-sandbox-3.0-rc1
selinux-sandbox-3.1
selinux-sandbox-3.1-rc2
selinux-sandbox-3.2
selinux-sandbox-3.2-rc1
selinux-sandbox-3.2-rc2
selinux-sandbox-3.2-rc3
semodule-utils-2.*
semodule-utils-2.7
semodule-utils-2.7-rc1
semodule-utils-2.7-rc2
semodule-utils-2.7-rc3
semodule-utils-2.7-rc4
semodule-utils-2.7-rc5
semodule-utils-2.7-rc6
semodule-utils-2.8
semodule-utils-2.8-rc1
semodule-utils-2.8-rc2
semodule-utils-2.8-rc3
semodule-utils-2.9
semodule-utils-3.*
semodule-utils-3.0
semodule-utils-3.0-rc1
semodule-utils-3.1
semodule-utils-3.1-rc2
semodule-utils-3.2
semodule-utils-3.2-rc1
semodule-utils-3.2-rc2
semodule-utils-3.2-rc3
sepolgen-1.*
sepolgen-1.2
sepolgen-1.2.1
sepolgen-1.2.2
sepolgen-1.2.2-rc2
sepolgen-1.2.2-rc3
sepolgen-1.2.2-rc4
sepolgen-1.2.2-rc5
sepolgen-1.2.2-rc6
sepolgen-1.2.2-rc7
sepolgen-1.2.3
sepolgen-1.2.3-rc1
sepolgen-2.*
sepolgen-2.6
sepolgen-2.6-rc1
sepolgen-2.6-rc2
Database specific
source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-36087.json"
vanir_signatures
[
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"183876728326803525112157422922061259076",
"328703148128320516125026399376588448455",
"230199517397306399716978052921782969498",
"107157126862077543187334308996068075640",
"278623980516350987133875061264641603304",
"138805797432491118174522328846959269353",
"23765780684173179429476893236922715404",
"258668949758547995718008952085069003342",
"40760257860715875290445994819802576914",
"17500797260726643034752140199433826600",
"315031663983752927366619564954829350451",
"217226570087870188733606923070308540902",
"288230039647557958093620505757105997768",
"115867961769130697484526047287037186777",
"289354624719398516819854005901076481426",
"110532357990646945187181992736302192494",
"67240094650700800560911208887672828297",
"335145615686817878681572388989083633904",
"110047506702269321875274110479868505762",
"325474028789220868509860897750678498493",
"295351075712559440484127404765040973109"
]
},
"source": "https://github.com/selinuxproject/selinux/commit/340f0eb7f3673e8aacaf0a96cbfcd4d12a405521",
"target": {
"file": "libsepol/cil/src/cil_build_ast.c"
},
"signature_version": "v1",
"signature_type": "Line",
"deprecated": false,
"id": "CVE-2021-36087-45f34cdd"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"115955176104542041489429664044827038426",
"310906068992919460868187003684802416798",
"118254091501105413129746432958063478925",
"255870215286240865916194537647816361222",
"172108040035898250050347416679765353167"
]
},
"source": "https://github.com/selinuxproject/selinux/commit/340f0eb7f3673e8aacaf0a96cbfcd4d12a405521",
"target": {
"file": "libsepol/cil/src/cil_resolve_ast.c"
},
"signature_version": "v1",
"signature_type": "Line",
"deprecated": false,
"id": "CVE-2021-36087-60a8260d"
},
{
"digest": {
"length": 14345.0,
"function_hash": "73501039882193824431008554035953756913"
},
"source": "https://github.com/selinuxproject/selinux/commit/340f0eb7f3673e8aacaf0a96cbfcd4d12a405521",
"target": {
"function": "__cil_build_ast_node_helper",
"file": "libsepol/cil/src/cil_build_ast.c"
},
"signature_version": "v1",
"signature_type": "Function",
"deprecated": false,
"id": "CVE-2021-36087-af80e84a"
},
{
"digest": {
"length": 477.0,
"function_hash": "128341480309304772726956638765946147682"
},
"source": "https://github.com/selinuxproject/selinux/commit/340f0eb7f3673e8aacaf0a96cbfcd4d12a405521",
"target": {
"function": "__cil_build_ast_last_child_helper",
"file": "libsepol/cil/src/cil_build_ast.c"
},
"signature_version": "v1",
"signature_type": "Function",
"deprecated": false,
"id": "CVE-2021-36087-bec13947"
},
{
"digest": {
"length": 2674.0,
"function_hash": "92067899462263966081699937569280415869"
},
"source": "https://github.com/selinuxproject/selinux/commit/340f0eb7f3673e8aacaf0a96cbfcd4d12a405521",
"target": {
"function": "__cil_resolve_ast_node_helper",
"file": "libsepol/cil/src/cil_resolve_ast.c"
},
"signature_version": "v1",
"signature_type": "Function",
"deprecated": false,
"id": "CVE-2021-36087-d24cd8eb"
},
{
"digest": {
"length": 516.0,
"function_hash": "292243287020746760833812267338023984744"
},
"source": "https://github.com/selinuxproject/selinux/commit/340f0eb7f3673e8aacaf0a96cbfcd4d12a405521",
"target": {
"function": "cil_build_ast",
"file": "libsepol/cil/src/cil_build_ast.c"
},
"signature_version": "v1",
"signature_type": "Function",
"deprecated": false,
"id": "CVE-2021-36087-d5db87c4"
}
]