CVE-2021-3759 - log back

CVE-2021-3759 edited at 04 Nov 2021 08:28:07
Description
- A memory overflow was found in the Linux kernel ipc functionality of the memcg subsystem in the way user calls semget for many times creating semaphores. A local user could use this flaw to starve the resources causing denial of service.
+ A memory overflow was found in the Linux kernel before 5.15, in the ipc functionality of the memcg subsystem in the way user calls semget for many times creating semaphores. A local user could use this flaw to starve the resources causing denial of service.
References
https://bugzilla.redhat.com/show_bug.cgi?id=1999675
- https://lore.kernel.org/linux-mm/1626333284-1404-1-git-send-email-nglaive@gmail.com/T/
+ https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?h=v5.15&id=18319498fdd4cdf8c1c2c48cd432863b1f915d6f
CVE-2021-3759 edited at 01 Sep 2021 07:29:51
Severity
- Unknown
+ Low
Remote
- Unknown
+ Local
Type
- Unknown
+ Denial of service
Description
+ A memory overflow was found in the Linux kernel ipc functionality of the memcg subsystem in the way user calls semget for many times creating semaphores. A local user could use this flaw to starve the resources causing denial of service.
References
+ https://bugzilla.redhat.com/show_bug.cgi?id=1999675
+ https://lore.kernel.org/linux-mm/1626333284-1404-1-git-send-email-nglaive@gmail.com/T/
CVE-2021-3759 created at 01 Sep 2021 07:27:26
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes