AVG-2234 log

Package linux-hardened
Status Fixed
Severity Medium
Type multiple issues
Affected 5.12.19.hardened1-1
Fixed 5.13.13.hardened1-1
Current 5.15.6.hardened1-1 [extra]
Ticket None
Created Wed Jul 28 18:32:02 2021
Issue Severity Remote Type Description
CVE-2021-38204 Low No Denial of service
drivers/usb/host/max3421-hcd.c in the Linux kernel before 5.13.6 allows physically proximate attackers to cause a denial of service (use-after-free and...
CVE-2021-38166 Medium No Arbitrary code execution
In kernel/bpf/hashtab.c in the Linux kernel before version 5.13.12, there is an integer overflow and out-of-bounds write when many elements are placed in a...
CVE-2021-37159 Medium No Arbitrary code execution
hso_free_net_device in drivers/net/usb/hso.c in the Linux kernel before version 5.13.6 calls unregister_netdev without checking for the NETREG_REGISTERED...
CVE-2021-35477 Medium No Information disclosure
An issue has been discovered in the Linux kernel mechanism to mitigate Speculative Store Bypass in BPF. On affected systems, an unprivileged BPF program can...
CVE-2021-34556 Medium No Information disclosure
An issue has been discovered in the Linux kernel mechanism to mitigate Speculative Store Bypass in BPF. On affected systems, an unprivileged BPF program can...
CVE-2021-3732 Medium No Information disclosure
A security issue was found in overlayfs implementation of the Linux kernel before version 5.13.11 where a local attacker with an unprivileged account who...
CVE-2021-3679 Low No Denial of service
A lack of CPU resources in the Linux kernel tracing module functionality was found in the way users use the trace ring buffer in specific way. Only...
CVE-2021-3656 Medium No Insufficient validation
A security issue has been found in the KVM's AMD code for supporting SVM nested virtualization in the Linux kernel before version 5.13.20. This issue is...
CVE-2021-3653 Medium No Insufficient validation
A security issue has been found in the KVM's AMD code for supporting SVM nested virtualization in the Linux kernel before version 5.13.20. This issue is...