CVE-2021-34693 - log back

CVE-2021-34693 edited at 23 Jun 2021 19:06:21
Description
- net/can/bcm.c in the Linux kernel allows local users to obtain sensitive information from kernel stack memory because parts of a data structure are uninitialized.
+ net/can/bcm.c in the Linux kernel before 5.12.13 allows local users to obtain sensitive information from kernel stack memory because parts of a data structure are uninitialized.
References
https://www.openwall.com/lists/oss-security/2021/06/15/1
https://github.com/nrb547/kernel-exploitation/tree/main/cve-2021-34693
- https://lore.kernel.org/netdev/trinity-87eaea25-2a7d-4aa9-92a5-269b822e5d95-1623609211076@3c-app-gmx-bs04/T/
+ https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.12.13&id=dc6415cb5cf8ebc8b334b7d0be916a0bf4353779
+ https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.10.46&id=acb755be1f7adb204dcedc4d3b204ef098628623
CVE-2021-34693 edited at 16 Jun 2021 14:23:44
Description
- net/can/bcm.c in the Linux kernel through 5.12.10 allows local users to obtain sensitive information from kernel stack memory because parts of a data structure are uninitialized.
+ net/can/bcm.c in the Linux kernel allows local users to obtain sensitive information from kernel stack memory because parts of a data structure are uninitialized.
CVE-2021-34693 edited at 15 Jun 2021 20:36:40
References
+ https://www.openwall.com/lists/oss-security/2021/06/15/1
+ https://github.com/nrb547/kernel-exploitation/tree/main/cve-2021-34693
https://lore.kernel.org/netdev/trinity-87eaea25-2a7d-4aa9-92a5-269b822e5d95-1623609211076@3c-app-gmx-bs04/T/
CVE-2021-34693 edited at 15 Jun 2021 07:48:27
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Local
Type
- Unknown
+ Information disclosure
Description
+ net/can/bcm.c in the Linux kernel through 5.12.10 allows local users to obtain sensitive information from kernel stack memory because parts of a data structure are uninitialized.
References
+ https://lore.kernel.org/netdev/trinity-87eaea25-2a7d-4aa9-92a5-269b822e5d95-1623609211076@3c-app-gmx-bs04/T/
CVE-2021-34693 created at 15 Jun 2021 07:47:54
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes