CVE-2021-0707

Опубликовано: 07 окт. 2021

Источник: redhat

CVSS3: 7

EPSS Низкий

Описание

In dma_buf_release of dma-buf.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-155756045References: Upstream kernel

Отчет

There was no shipped kernel version that was seen affected by this problem.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 6	kernel	Not affected
Red Hat Enterprise Linux 7	kernel	Not affected
Red Hat Enterprise Linux 7	kernel-rt	Not affected
Red Hat Enterprise Linux 8	kernel	Not affected
Red Hat Enterprise Linux 8	kernel-rt	Not affected
Red Hat Enterprise Linux 9	kernel	Not affected
Red Hat Enterprise Linux 9	kernel-rt	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-416

https://bugzilla.redhat.com/show_bug.cgi?id=2123654Kernel: possible memory corruption due to a use after free in dma_buf_release of dma-buf.c

EPSS

Процентиль: 3%

0.0002

Низкий

7 High

CVSS3

Связанные уязвимости

CVE-2021-0707

CVSS3: 7.8

ubuntu

больше 3 лет назад

CVE-2021-0707

CVSS3: 7.8

nvd

больше 3 лет назад

CVE-2021-0707

CVSS3: 7.8

debian

больше 3 лет назад

In dma_buf_release of dma-buf.c, there is a possible memory corruption ...

GHSA-28gv-g34g-4v3h

CVSS3: 7.8

github

больше 3 лет назад

SUSE-SU-2022:1687-1

suse-cvrf

больше 3 лет назад

Security update for the Linux Kernel

EPSS

Процентиль: 3%

0.0002

Низкий

7 High

CVSS3