---

CVE-2021-28972 - log back

CVE-2021-28972 edited at 25 Mar 2021 09:57:21
References	- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=cc7a0bb058b85ea03db87169c60c7cfdd5d34678 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.11.9&id=a2afad32503aac2ef64a26bcc6de394efda3122e + https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.10.26&id=be1f58e58f7644ab33f1413685c84173766408d3

CVE-2021-28972 edited at 24 Mar 2021 23:24:55
References	https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=cc7a0bb058b85ea03db87169c60c7cfdd5d34678 + https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.11.9&id=a2afad32503aac2ef64a26bcc6de394efda3122e

CVE-2021-28972 edited at 22 Mar 2021 20:06:29
Severity	- Unknown + Medium
Remote	- Unknown + Local
Type	- Unknown + Arbitrary code execution
Description	+ In drivers/pci/hotplug/rpadlpar_sysfs.c in the Linux kernel through 5.11.8, the RPA PCI Hotplug driver has a user-tolerable buffer overflow when writing a new device name to the driver from userspace, allowing userspace to write data to the kernel stack frame directly. This occurs because add_slot_store and remove_slot_store mishandle drc_name '\0' termination, aka CID-cc7a0bb058b8.
References	+ https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=cc7a0bb058b85ea03db87169c60c7cfdd5d34678

CVE-2021-28972 created at 22 Mar 2021 20:05:14
Severity	+ Unknown
Remote	+ Unknown
Type	+ Unknown
Description
References
Notes