---

CVE-2021-4095 - log back

CVE-2021-4095 edited at 14 Dec 2021 16:09:04
References	+ https://www.openwall.com/lists/oss-security/2021/12/14/2 https://bugzilla.redhat.com/show_bug.cgi?id=2031194 https://lore.kernel.org/kvm/CAFcO6XOmoS7EacN_n6v4Txk7xL7iqRa2gABg3F7E3Naf5uG94g@mail.gmail.com/T/ https://patchwork.kernel.org/project/kvm/patch/20211121125451.9489-12-dwmw2@infradead.org/

CVE-2021-4095 edited at 11 Dec 2021 10:02:39
Severity	- Unknown + Low
Remote	- Unknown + Local
Type	- Unknown + Denial of service
Description	+ A security issue has been found in the Linux kernel. There is a NULL pointer dereference in kvm_dirty_ring_get() in virt/kvm/dirty_ring.c via a KVM KVM_XEN_HVM_SET_ATTR ioctl when there is no vCPU created.
References	+ https://bugzilla.redhat.com/show_bug.cgi?id=2031194 + https://lore.kernel.org/kvm/CAFcO6XOmoS7EacN_n6v4Txk7xL7iqRa2gABg3F7E3Naf5uG94g@mail.gmail.com/T/ + https://patchwork.kernel.org/project/kvm/patch/20211121125451.9489-12-dwmw2@infradead.org/

CVE-2021-4095 created at 11 Dec 2021 10:01:03
Severity	+ Unknown
Remote	+ Unknown
Type	+ Unknown
Description
References
Notes