---

CVE-2021-20177 - log back

CVE-2021-20177 edited at 11 Jan 2021 08:16:48
Severity	- Unknown + Low
Remote	- Unknown + Local
Type	- Unknown + Denial of service
Description	+ A flaw was found in the Linux kernels implementation of string matching within a packet. A privileged user ( with root or CAP_NET_ADMIN ) when inserting iptables rules could insert a rule which can panic the system.
References	+ https://bugzilla.redhat.com/show_bug.cgi?id=1914719 + https://bugzilla.kernel.org/show_bug.cgi?id=209823 + https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/include/linux/netfilter.h?t=v.5.4.81&id=6ec51459df7117dbe9b1fef2174951f80877a850 + https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=ca58fbe06c54795f00db79e447f94c2028d30124
Notes

CVE-2021-20177 created at 11 Jan 2021 08:08:54