CVE-2021-0935

Опубликовано: 12 мар. 2018

Источник: redhat

CVSS3: 6.7

Описание

In ip6_xmit of ip6_output.c, there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-168607263References: Upstream kernel

An out of bounds write flaw in the Linux kernel's IPv6 protocol was found. A local user could use this flaw to crash the system or escalate their privileges on the system.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 6	kernel	Not affected
Red Hat Enterprise Linux 7	kernel	Not affected
Red Hat Enterprise Linux 7	kernel-alt	Not affected
Red Hat Enterprise Linux 7	kernel-rt	Not affected
Red Hat Enterprise Linux 8	kernel	Not affected
Red Hat Enterprise Linux 8	kernel-rt	Not affected
Red Hat Enterprise Linux 9	kernel	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-416->CWE-787

https://bugzilla.redhat.com/show_bug.cgi?id=2018225kernel: out-of-bounds write due to a use-after-free in ip6_xmit() in ip6_output.c

6.7 Medium

CVSS3

Связанные уязвимости

CVE-2021-0935

CVSS3: 6.7

ubuntu

больше 4 лет назад

CVE-2021-0935

CVSS3: 6.7

nvd

больше 4 лет назад

CVE-2021-0935

CVSS3: 6.7

debian

больше 4 лет назад

In ip6_xmit of ip6_output.c, there is a possible out of bounds write d ...

SUSE-SU-2021:4039-1

suse-cvrf

около 4 лет назад

Security update for the Linux Kernel (Live Patch 27 for SLE 15 SP1)

GHSA-3v3h-h6x7-96rv

github

больше 3 лет назад

6.7 Medium

CVSS3