Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2021-46934

Опубликовано: 27 фев. 2024
Источник: redhat
CVSS3: 4.4
EPSS Низкий

Описание

In the Linux kernel, the following vulnerability has been resolved: i2c: validate user data in compat ioctl Wrong user data may cause warning in i2c_transfer(), ex: zero msgs. Userspace should not be able to trigger warnings, so this patch adds validation checks for user data in compact ioctl to prevent reported warnings

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 6kernelOut of support scope
Red Hat Enterprise Linux 7kernelOut of support scope
Red Hat Enterprise Linux 7kernel-rtOut of support scope
Red Hat Enterprise Linux 9kernelAffected
Red Hat Enterprise Linux 9kernel-rtNot affected
Red Hat Enterprise Linux 8kernel-rtFixedRHSA-2024:362705.06.2024
Red Hat Enterprise Linux 8kernelFixedRHSA-2024:361805.06.2024

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low
Дефект:
CWE-703
https://bugzilla.redhat.com/show_bug.cgi?id=2266446kernel: i2c: validate user data in compat ioctl

EPSS

Процентиль: 2%
0.00015
Низкий

4.4 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2021-46934

CVSS3: 3.3
ubuntu
больше 1 года назад

In the Linux kernel, the following vulnerability has been resolved: i2c: validate user data in compat ioctl Wrong user data may cause warning in i2c_transfer(), ex: zero msgs. Userspace should not be able to trigger warnings, so this patch adds validation checks for user data in compact ioctl to prevent reported warnings

nvd логотип

CVE-2021-46934

CVSS3: 3.3
nvd
больше 1 года назад

In the Linux kernel, the following vulnerability has been resolved: i2c: validate user data in compat ioctl Wrong user data may cause warning in i2c_transfer(), ex: zero msgs. Userspace should not be able to trigger warnings, so this patch adds validation checks for user data in compact ioctl to prevent reported warnings

debian логотип

CVE-2021-46934

CVSS3: 3.3
debian
больше 1 года назад

In the Linux kernel, the following vulnerability has been resolved: i ...

github логотип

GHSA-5gwx-vhc7-55r8

CVSS3: 3.3
github
больше 1 года назад

In the Linux kernel, the following vulnerability has been resolved: i2c: validate user data in compat ioctl Wrong user data may cause warning in i2c_transfer(), ex: zero msgs. Userspace should not be able to trigger warnings, so this patch adds validation checks for user data in compact ioctl to prevent reported warnings

fstec логотип

BDU:2024-06346

CVSS3: 3.3
fstec
больше 3 лет назад

Уязвимость функции i2c_transfer() в компоненте i2c ядра операционной системы Linux, позволяющая нарушителю оказывать влияние на целостность защищаемой информации

EPSS

Процентиль: 2%
0.00015
Низкий

4.4 Medium

CVSS3