CVE-2021-20226 - log back

CVE-2021-20226 edited at 10 Feb 2021 05:19:48
References
https://bugzilla.redhat.com/show_bug.cgi?id=1873476
https://seclists.org/oss-sec/2021/q1/111
https://www.zerodayinitiative.com/advisories/ZDI-21-001/
https://access.redhat.com/security/cve/CVE-2021-20226
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20226
+ https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=233295130e53c8dfe6dbef3f52634c3f7e44cd6a
CVE-2021-20226 edited at 09 Feb 2021 05:41:09
References
- https://bugzilla.redhat.com/show_bug.cgi?id=1925426
+ https://bugzilla.redhat.com/show_bug.cgi?id=1873476
https://seclists.org/oss-sec/2021/q1/111
https://www.zerodayinitiative.com/advisories/ZDI-21-001/
https://access.redhat.com/security/cve/CVE-2021-20226
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20226
CVE-2021-20226 edited at 09 Feb 2021 05:36:49
References
https://bugzilla.redhat.com/show_bug.cgi?id=1925426
https://seclists.org/oss-sec/2021/q1/111
https://www.zerodayinitiative.com/advisories/ZDI-21-001/
+ https://access.redhat.com/security/cve/CVE-2021-20226
+ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20226
CVE-2021-20226 created at 09 Feb 2021 05:29:53
Severity
+ Medium
Remote
+ Local
Type
+ Privilege escalation
Description
+ An inappropriate handling of descriptors that results in a use-after-free vulnerability was found on the Linux kernel before version 5.10.
References
+ https://bugzilla.redhat.com/show_bug.cgi?id=1925426
+ https://seclists.org/oss-sec/2021/q1/111
+ https://www.zerodayinitiative.com/advisories/ZDI-21-001/
Notes