AVG-1555 log

Package	linux
Status	Not affected
Severity	Medium
Type	privilege escalation
Affected	5.9.14.a-1
Fixed	5.10.1.a-1
Current	6.8.7.arch1-2 [core-testing] 6.8.7.arch1-1 [core]
Ticket	None
Created	Wed Feb 10 05:32:04 2021

Issue	Severity	Remote	Type	Description
CVE-2021-20226	Medium	No	Privilege escalation	An inappropriate handling of descriptors that results in a use-after- free vulnerability was found on the Linux kernel before version 5.10.

References
https://bugzilla.redhat.com/show_bug.cgi?id=1873476 https://seclists.org/oss-sec/2021/q1/111 https://www.zerodayinitiative.com/advisories/ZDI-21-001/ https://access.redhat.com/security/cve/CVE-2021-20226 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20226 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=233295130e53c8dfe6dbef3f52634c3f7e44cd6a

References

https://bugzilla.redhat.com/show_bug.cgi?id=1873476
https://seclists.org/oss-sec/2021/q1/111
https://www.zerodayinitiative.com/advisories/ZDI-21-001/
https://access.redhat.com/security/cve/CVE-2021-20226
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20226
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=233295130e53c8dfe6dbef3f52634c3f7e44cd6a