vulnerability
CentOS Linux: CVE-2021-33909: Important: kernel security and bug fix update (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:N/C:C/I:C/A:C) | 2021-07-20 | 2021-07-21 | 2023-05-25 |
Severity
7
CVSS
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Published
2021-07-20
Added
2021-07-21
Modified
2023-05-25
Description
fs/seq_file.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd89f05.
Solution(s)
centos-upgrade-kernelcentos-upgrade-kernel-rtcentos-upgrade-kpatch-patch-3_10_0-1160centos-upgrade-kpatch-patch-3_10_0-1160-debuginfocentos-upgrade-kpatch-patch-3_10_0-1160_11_1centos-upgrade-kpatch-patch-3_10_0-1160_11_1-debuginfocentos-upgrade-kpatch-patch-3_10_0-1160_15_2centos-upgrade-kpatch-patch-3_10_0-1160_15_2-debuginfocentos-upgrade-kpatch-patch-3_10_0-1160_21_1centos-upgrade-kpatch-patch-3_10_0-1160_21_1-debuginfocentos-upgrade-kpatch-patch-3_10_0-1160_24_1centos-upgrade-kpatch-patch-3_10_0-1160_24_1-debuginfocentos-upgrade-kpatch-patch-3_10_0-1160_25_1centos-upgrade-kpatch-patch-3_10_0-1160_25_1-debuginfocentos-upgrade-kpatch-patch-3_10_0-1160_2_1centos-upgrade-kpatch-patch-3_10_0-1160_2_1-debuginfocentos-upgrade-kpatch-patch-3_10_0-1160_2_2centos-upgrade-kpatch-patch-3_10_0-1160_2_2-debuginfocentos-upgrade-kpatch-patch-3_10_0-1160_31_1centos-upgrade-kpatch-patch-3_10_0-1160_31_1-debuginfocentos-upgrade-kpatch-patch-3_10_0-1160_6_1centos-upgrade-kpatch-patch-3_10_0-1160_6_1-debuginfocentos-upgrade-kpatch-patch-4_18_0-305centos-upgrade-kpatch-patch-4_18_0-305-debuginfocentos-upgrade-kpatch-patch-4_18_0-305-debugsourcecentos-upgrade-kpatch-patch-4_18_0-305_3_1centos-upgrade-kpatch-patch-4_18_0-305_3_1-debuginfocentos-upgrade-kpatch-patch-4_18_0-305_3_1-debugsourcecentos-upgrade-kpatch-patch-4_18_0-305_7_1centos-upgrade-kpatch-patch-4_18_0-305_7_1-debuginfocentos-upgrade-kpatch-patch-4_18_0-305_7_1-debugsource
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.