Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2021:2660

Опубликовано: 06 июл. 2021
Источник: rocky
Оценка: Important

Описание

Important: linuxptp security update

The linuxptp packages provide Precision Time Protocol (PTP) implementation for Linux according to IEEE standard 1588 for Linux. The dual design goals are to provide a robust implementation of the standard and to use the most relevant and modern Application Programming Interfaces (API) offered by the Linux kernel.

Security Fix(es):

  • linuxptp: missing length check of forwarded messages (CVE-2021-3570)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

  • Rocky Linux 8

НаименованиеАрхитектураРелизRPM
linuxptpx86_645.el8_4.1linuxptp-2.0-5.el8_4.1.x86_64.rpm

Показывать по

Связанные CVE

CVE-2021-3570

Ссылки на источники

Исправления

Связанные уязвимости

ubuntu логотип

CVE-2021-3570

CVSS3: 8.8
ubuntu
больше 4 лет назад

A flaw was found in the ptp4l program of the linuxptp package. A missing length check when forwarding a PTP message between ports allows a remote attacker to cause an information leak, crash, or potentially remote code execution. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. This flaw affects linuxptp versions before 3.1.1, before 2.0.1, before 1.9.3, before 1.8.1, before 1.7.1, before 1.6.1 and before 1.5.1.

redhat логотип

CVE-2021-3570

CVSS3: 8.8
redhat
больше 4 лет назад

A flaw was found in the ptp4l program of the linuxptp package. A missing length check when forwarding a PTP message between ports allows a remote attacker to cause an information leak, crash, or potentially remote code execution. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. This flaw affects linuxptp versions before 3.1.1, before 2.0.1, before 1.9.3, before 1.8.1, before 1.7.1, before 1.6.1 and before 1.5.1.

nvd логотип

CVE-2021-3570

CVSS3: 8.8
nvd
больше 4 лет назад

A flaw was found in the ptp4l program of the linuxptp package. A missing length check when forwarding a PTP message between ports allows a remote attacker to cause an information leak, crash, or potentially remote code execution. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. This flaw affects linuxptp versions before 3.1.1, before 2.0.1, before 1.9.3, before 1.8.1, before 1.7.1, before 1.6.1 and before 1.5.1.

debian логотип

CVE-2021-3570

CVSS3: 8.8
debian
больше 4 лет назад

A flaw was found in the ptp4l program of the linuxptp package. A missi ...

suse-cvrf логотип

openSUSE-SU-2021:3202-1

suse-cvrf
больше 4 лет назад

Security update for linuxptp