CVE-2021-26708 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Medium
Remote	No
Type	Privilege escalation
Description	A local privilege escalation was discovered in the Linux kernel before 5.10.13. Multiple race conditions in the AF_VSOCK implementation are caused by wrong locking in net/vmw_vsock/af_vsock.c. The race conditions were implicitly introduced in the commits that added VSOCK multi-transport support.

Group	Package	Affected	Fixed	Severity	Status
AVG-1514	linux-zen	5.10.12.zen1-1	5.10.13.zen1-1	Medium	Fixed
AVG-1513	linux-hardened	5.10.12.hardened1-1	5.10.13.hardened1-1	Medium	Fixed
AVG-1512	linux	5.10.12.arch1-1	5.10.13.arch1-1	Medium	Fixed

References
https://www.openwall.com/lists/oss-security/2021/02/04/5 https://a13xp0p0v.github.io/2021/02/09/CVE-2021-26708.html https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.10.13&id=55d900415b81680bcd5f93be51f26ebfc51ac6fb

References

https://www.openwall.com/lists/oss-security/2021/02/04/5
https://a13xp0p0v.github.io/2021/02/09/CVE-2021-26708.html
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.10.13&id=55d900415b81680bcd5f93be51f26ebfc51ac6fb