CVE-2021-26708 - log back

CVE-2021-26708 edited at 09 Apr 2021 10:15:56
References
https://www.openwall.com/lists/oss-security/2021/02/04/5
+ https://a13xp0p0v.github.io/2021/02/09/CVE-2021-26708.html
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.10.13&id=55d900415b81680bcd5f93be51f26ebfc51ac6fb
CVE-2021-26708 edited at 05 Feb 2021 12:04:17
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Local
Type
- Unknown
+ Privilege escalation
Description
+ A local privilege escalation was discovered in the Linux kernel before 5.10.13. Multiple race conditions in the AF_VSOCK implementation are caused by wrong locking in net/vmw_vsock/af_vsock.c. The race conditions were implicitly introduced in the commits that added VSOCK multi-transport support.
References
+ https://www.openwall.com/lists/oss-security/2021/02/04/5
+ https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.10.13&id=55d900415b81680bcd5f93be51f26ebfc51ac6fb
CVE-2021-26708 created at 05 Feb 2021 11:57:38
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes