CVE-2021-3612 - log back

CVE-2021-3612 edited at 14 Jul 2021 19:47:19
Description
- An out-of-bounds memory write security issue was found in the Linux kernel’s joystick devices subsystem, in the way the user calls ioctl JSIOCSBTNMAP. This flaw allows a local user to crash the system or possibly escalate their privileges on the system.
+ An out-of-bounds memory write security issue was found in the Linux kernel’s joystick devices subsystem before version 5.13.2, in the way the user calls ioctl JSIOCSBTNMAP. This flaw allows a local user to crash the system or possibly escalate their privileges on the system.
References
https://bugzilla.redhat.com/show_bug.cgi?id=1974079
- https://lore.kernel.org/linux-input/20210620120030.1513655-1-avlarkin82@gmail.com/
+ https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.13.2&id=81acf1015233b3ee1d9834ba4fcca087a75c0c1b
+ https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.12.17&id=b88243d8f1c7eb2a834fd7cd1ea9691554240d3a
+ https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.10.50&id=b4c35e9e8061b2386da1aa0d708e991204e76c45
CVE-2021-3612 edited at 09 Jul 2021 13:40:19
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Local
Type
- Unknown
+ Privilege escalation
Description
+ An out-of-bounds memory write security issue was found in the Linux kernel’s joystick devices subsystem, in the way the user calls ioctl JSIOCSBTNMAP. This flaw allows a local user to crash the system or possibly escalate their privileges on the system.
References
+ https://bugzilla.redhat.com/show_bug.cgi?id=1974079
+ https://lore.kernel.org/linux-input/20210620120030.1513655-1-avlarkin82@gmail.com/
CVE-2021-3612 created at 09 Jul 2021 13:36:00
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes