CVE-2021-3753 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Medium
Remote	No
Type	Information disclosure
Description	An out-of-bounds read due to a race condition has been found in the Linux kernel before version 5.14.2. The root cause of this vulnerability is that the write access to vc_mode is not protected by a lock in vt_ioctl (KDSETMDE).

Group	Package	Affected	Fixed	Severity	Status
AVG-2349	linux-lts	5.10.61-2	5.10.62-1	Medium	Fixed
AVG-2348	linux-hardened	5.13.13.hardened1-1	5.13.14.hardened1-1	Medium	Fixed
AVG-2347	linux-zen	5.13.13.zen1-1	5.14.2.zen1-2	Medium	Fixed
AVG-2346	linux	5.13.13.arch1-1	5.14.2.arch1-2	Medium	Fixed

References
https://www.openwall.com/lists/oss-security/2021/09/01/4 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.14.2&id=acf3c7b4fae092e7f5c170bc8a0fe2ead9b2a320 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.13.14&id=a5dfcf3d8ecc549f8dc324ab6caf9dd14de87986 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.10.62&id=60d69cb4e60de0067e5d8aecacd86dfe92a5384a

References

https://www.openwall.com/lists/oss-security/2021/09/01/4
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.14.2&id=acf3c7b4fae092e7f5c170bc8a0fe2ead9b2a320
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.13.14&id=a5dfcf3d8ecc549f8dc324ab6caf9dd14de87986
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.10.62&id=60d69cb4e60de0067e5d8aecacd86dfe92a5384a