vulnerability

Debian: CVE-2021-47255: linux -- security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:L/AC:L/Au:S/C:C/I:N/A:P)	05/21/2024	07/30/2024	02/20/2025

Severity

CVSS

(AV:L/AC:L/Au:S/C:C/I:N/A:P)

Published

05/21/2024

Added

07/30/2024

Modified

02/20/2025

Description

In the Linux kernel, the following vulnerability has been resolved:

kvm: LAPIC: Restore guard to prevent illegal APIC register access

Per the SDM, "any access that touches bytes 4 through 15 of an APIC
register may cause undefined behavior and must not be executed."
Worse, such an access in kvm_lapic_reg_read can result in a leak of
kernel stack contents. Prior to commit 01402cf81051 ("kvm: LAPIC:
write down valid APIC registers"), such an access was explicitly
disallowed. Restore the guard that was removed in that commit.

Solution

debian-upgrade-linux

References

CVE-2021-47255
https://attackerkb.com/topics/CVE-2021-47255

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today