CVE-2021-20269 log
| Source |
|
| Severity | Low |
| Remote | No |
| Type | Information disclosure |
| Description | A security issue was found in kexec-tools where vmcore-dmesg.txt extracted from the vmcore of a previous kernel panic is created world-readable. It is possible that this could be used to leak kernel internal information from a previous execution if it was output to the ring buffer or part of the panic backtrace. An unprivileged user with a local account can use this to extract kernel internal information resulting in an information leak. |
| Group | Package | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|---|
| AVG-1673 | kexec-tools | 2.0.21-1 | Low | Vulnerable |
| References |
|---|
https://www.openwall.com/lists/oss-security/2021/03/11/2 https://bugzilla.redhat.com/show_bug.cgi?id=1934261 https://access.redhat.com/security/cve/CVE-2021-20269 |