---

CVE-2021-28375 - log back

CVE-2021-28375 edited at 17 Mar 2021 18:19:53
References	- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=20c40794eb85ea29852d7bc37c55713802a543d6 + https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.11.7&id=2754ab0efc08a9ab6f50d4ad592967db37dd38cc + https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.10.24&id=52feb58f9b5b078b5a39ed8ba8ab3b4546e16ff2

CVE-2021-28375 edited at 15 Mar 2021 07:34:13
Severity	- Unknown + Medium
Remote	- Unknown + Local
Type	- Unknown + Insufficient validation
Description	+ An issue was discovered in the Linux kernel through 5.11.6. fastrpc_internal_invoke in drivers/misc/fastrpc.c does not prevent user applications from sending kernel RPC messages, aka CID-20c40794eb85. This is a related issue to CVE-2019-2308.
References	+ https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=20c40794eb85ea29852d7bc37c55713802a543d6
Notes

CVE-2021-28375 created at 15 Mar 2021 07:31:28