CVE-2021-20177 - log back

CVE-2021-20177 edited at 11 Jan 2021 08:16:48
Severity
- Unknown
+ Low
Remote
- Unknown
+ Local
Type
- Unknown
+ Denial of service
Description
+ A flaw was found in the Linux kernels implementation of string matching within a packet. A privileged user ( with root or CAP_NET_ADMIN ) when inserting iptables rules could insert a rule which can panic the system.
References
+ https://bugzilla.redhat.com/show_bug.cgi?id=1914719
+ https://bugzilla.kernel.org/show_bug.cgi?id=209823
+ https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/include/linux/netfilter.h?t=v.5.4.81&id=6ec51459df7117dbe9b1fef2174951f80877a850
+ https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=ca58fbe06c54795f00db79e447f94c2028d30124
Notes
CVE-2021-20177 created at 11 Jan 2021 08:08:54