CVE-2021-28038 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Low
Remote	No
Type	Denial of service
Description	An issue was discovered in the Linux kernel through 5.11.3, as used with Xen PV. A certain part of the netback driver lacks necessary treatment of errors such as failed memory allocations (as a result of changes to the handling of grant mapping errors). A host OS denial of service may occur during misbehavior of a networking frontend driver. NOTE: this issue exists because of an incomplete fix for CVE-2021-26931. The issue is fixed in kernel versions 5.11.4 and 5.10.21.

Group	Package	Affected	Fixed	Severity	Status
AVG-1655	linux-lts	5.10.20-1	5.10.21-1	Medium	Fixed
AVG-1653	linux-zen	5.11.3.zen1-1	5.11.4.zen1-1	Medium	Fixed
AVG-1651	linux	5.11.3.arch1-1	5.11.4.arch1-1	Medium	Fixed
AVG-1645	linux-hardened	5.10.19.hardened1-1	5.10.21.hardened1-1	Medium	Fixed

References
https://xenbits.xen.org/xsa/advisory-367.html https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.11.4&id=267c4911c9114e6e30be52546bf62a624a814da4 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.10.21&id=545c837d6789afcb23da5494a22e459952fb823f

References

https://xenbits.xen.org/xsa/advisory-367.html
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.11.4&id=267c4911c9114e6e30be52546bf62a624a814da4
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.10.21&id=545c837d6789afcb23da5494a22e459952fb823f