vulnerability

Amazon Linux AMI: CVE-2021-3347: Security patch for kernel (ALAS-2021-1480)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:L/Au:N/C:C/I:C/A:C)	2021-01-29	2021-02-18	2022-10-14

Severity

CVSS

(AV:L/AC:L/Au:N/C:C/I:C/A:C)

Published

2021-01-29

Added

2021-02-18

Modified

2022-10-14

Description

An issue was discovered in the Linux kernel through 5.10.11. PI futexes have a kernel stack use-after-free during fault handling, allowing local users to execute code in the kernel, aka CID-34b1a1ce1458.

Solution

amazon-linux-upgrade-kernel

References

AMAZON-ALAS-2021-1480
NVD-CVE-2021-3347
UBUNTU-USN-4878-1
UBUNTU-USN-4884-1
UBUNTU-USN-4907-1
UBUNTU-USN-4910-1

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today