CVE-2021-3679 - log back

CVE-2021-3679 edited at 04 Aug 2021 08:55:12
Severity
- Unknown
+ Low
Remote
- Unknown
+ Local
Type
- Unknown
+ Denial of service
Description
+ A lack of CPU resources in the Linux kernel tracing module functionality was found in the way users use the trace ring buffer in specific way. Only privileged local users (with CAP_SYS_ADMIN capability) could use this flaw to starve the resources causing denial of service.
References
+ https://bugzilla.redhat.com/show_bug.cgi?id=1989165
+ https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.13.6&id=917a5bdd114a27c159796928cb3c09723a51d1c7
+ https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.10.54&id=757bdba8026be19b4f447487695cd0349a648d9e
CVE-2021-3679 created at 04 Aug 2021 08:53:21
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes