CVE-2021-41073 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Medium
Remote	No
Type	Privilege escalation
Description	loop_rw_iter in fs/io_uring.c in the Linux kernel through 5.14.6 allows local users to gain privileges by using IORING_OP_PROVIDE_BUFFERS to trigger a free of a kernel buffer, as demonstrated by using /proc/<pid>/maps for exploitation.

Group	Package	Affected	Fixed	Severity	Status
AVG-2415	linux-lts	5.10.67-1	5.10.68-1	Medium	Fixed
AVG-2414	linux-hardened	5.14.6.hardened1-1	5.14.8.hardened1-1	Medium	Fixed
AVG-2413	linux-zen	5.14.6.zen1-1	5.14.7.zen1-1	Medium	Fixed
AVG-2412	linux	5.14.6.arch1-1	5.14.7.arch1-1	Medium	Fixed

References
https://www.openwall.com/lists/oss-security/2021/09/18/2 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.14.7&id=71e32edd2210d0304e93ac110814b5a4b3a81dc0 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.10.68&id=ce8f81b76d3bef7b9fe6c8f84d029ab898b19469

References

https://www.openwall.com/lists/oss-security/2021/09/18/2
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.14.7&id=71e32edd2210d0304e93ac110814b5a4b3a81dc0
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.10.68&id=ce8f81b76d3bef7b9fe6c8f84d029ab898b19469