Количество 20
Количество 20
CVE-2021-3491
The io_uring subsystem in the Linux kernel allowed the MAX_RW_COUNT limit to be bypassed in the PROVIDE_BUFFERS operation, which led to negative values being usedin mem_rw when reading /proc/<PID>/mem. This could be used to create a heap overflow leading to arbitrary code execution in the kernel. It was addressed via commit d1f82808877b ("io_uring: truncate lengths larger than MAX_RW_COUNT on provide buffers") (v5.13-rc1) and backported to the stable kernels in v5.12.4, v5.11.21, and v5.10.37. It was introduced in ddf0322db79c ("io_uring: add IORING_OP_PROVIDE_BUFFERS") (v5.7-rc1).
CVE-2021-3491
The io_uring subsystem in the Linux kernel allowed the MAX_RW_COUNT limit to be bypassed in the PROVIDE_BUFFERS operation, which led to negative values being usedin mem_rw when reading /proc/<PID>/mem. This could be used to create a heap overflow leading to arbitrary code execution in the kernel. It was addressed via commit d1f82808877b ("io_uring: truncate lengths larger than MAX_RW_COUNT on provide buffers") (v5.13-rc1) and backported to the stable kernels in v5.12.4, v5.11.21, and v5.10.37. It was introduced in ddf0322db79c ("io_uring: add IORING_OP_PROVIDE_BUFFERS") (v5.7-rc1).
CVE-2021-3491
The io_uring subsystem in the Linux kernel allowed the MAX_RW_COUNT limit to be bypassed in the PROVIDE_BUFFERS operation, which led to negative values being usedin mem_rw when reading /proc/<PID>/mem. This could be used to create a heap overflow leading to arbitrary code execution in the kernel. It was addressed via commit d1f82808877b ("io_uring: truncate lengths larger than MAX_RW_COUNT on provide buffers") (v5.13-rc1) and backported to the stable kernels in v5.12.4, v5.11.21, and v5.10.37. It was introduced in ddf0322db79c ("io_uring: add IORING_OP_PROVIDE_BUFFERS") (v5.7-rc1).
CVE-2021-3491
The io_uring subsystem in the Linux kernel allowed the MAX_RW_COUNT li ...
GHSA-q4c9-gg27-f3pq
The io_uring subsystem in the Linux kernel allowed the MAX_RW_COUNT limit to be bypassed in the PROVIDE_BUFFERS operation, which led to negative values being usedin mem_rw when reading /proc/<PID>/mem. This could be used to create a heap overflow leading to arbitrary code execution in the kernel. It was addressed via commit d1f82808877b ("io_uring: truncate lengths larger than MAX_RW_COUNT on provide buffers") (v5.13-rc1) and backported to the stable kernels in v5.12.4, v5.11.21, and v5.10.37. It was introduced in ddf0322db79c ("io_uring: add IORING_OP_PROVIDE_BUFFERS") (v5.7-rc1).
BDU:2021-04843
Уязвимость подсистемы io_uring ядра операционной системы Linux, связанная с записью за границами буфера в памяти, позволяющая нарушителю выполнить произвольный код
openSUSE-SU-2021:0947-1
Security update for the Linux Kernel
openSUSE-SU-2021:0843-1
Security update for the Linux Kernel
SUSE-SU-2021:1913-1
Security update for the Linux Kernel
SUSE-SU-2021:1912-1
Security update for the Linux Kernel
SUSE-SU-2021:1899-1
Security update for the Linux Kernel
SUSE-SU-2021:1891-1
Security update for the Linux Kernel
SUSE-SU-2021:1890-1
Security update for the Linux Kernel
SUSE-SU-2021:1888-1
Security update for the Linux Kernel
SUSE-SU-2021:1887-1
Security update for the Linux Kernel
SUSE-SU-2021:2421-1
Security update for the Linux Kernel
openSUSE-SU-2021:1977-1
Security update for the Linux Kernel
openSUSE-SU-2021:1975-1
Security update for the Linux Kernel
SUSE-SU-2021:1977-1
Security update for the Linux Kernel
SUSE-SU-2021:1975-1
Security update for the Linux Kernel
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2021-3491 The io_uring subsystem in the Linux kernel allowed the MAX_RW_COUNT limit to be bypassed in the PROVIDE_BUFFERS operation, which led to negative values being usedin mem_rw when reading /proc/<PID>/mem. This could be used to create a heap overflow leading to arbitrary code execution in the kernel. It was addressed via commit d1f82808877b ("io_uring: truncate lengths larger than MAX_RW_COUNT on provide buffers") (v5.13-rc1) and backported to the stable kernels in v5.12.4, v5.11.21, and v5.10.37. It was introduced in ddf0322db79c ("io_uring: add IORING_OP_PROVIDE_BUFFERS") (v5.7-rc1). | CVSS3: 7.8 | 0% Низкий | больше 4 лет назад |
 | CVE-2021-3491 The io_uring subsystem in the Linux kernel allowed the MAX_RW_COUNT limit to be bypassed in the PROVIDE_BUFFERS operation, which led to negative values being usedin mem_rw when reading /proc/<PID>/mem. This could be used to create a heap overflow leading to arbitrary code execution in the kernel. It was addressed via commit d1f82808877b ("io_uring: truncate lengths larger than MAX_RW_COUNT on provide buffers") (v5.13-rc1) and backported to the stable kernels in v5.12.4, v5.11.21, and v5.10.37. It was introduced in ddf0322db79c ("io_uring: add IORING_OP_PROVIDE_BUFFERS") (v5.7-rc1). | CVSS3: 7.4 | 0% Низкий | больше 4 лет назад |
 | CVE-2021-3491 The io_uring subsystem in the Linux kernel allowed the MAX_RW_COUNT limit to be bypassed in the PROVIDE_BUFFERS operation, which led to negative values being usedin mem_rw when reading /proc/<PID>/mem. This could be used to create a heap overflow leading to arbitrary code execution in the kernel. It was addressed via commit d1f82808877b ("io_uring: truncate lengths larger than MAX_RW_COUNT on provide buffers") (v5.13-rc1) and backported to the stable kernels in v5.12.4, v5.11.21, and v5.10.37. It was introduced in ddf0322db79c ("io_uring: add IORING_OP_PROVIDE_BUFFERS") (v5.7-rc1). | CVSS3: 7.8 | 0% Низкий | больше 4 лет назад |
| CVE-2021-3491 The io_uring subsystem in the Linux kernel allowed the MAX_RW_COUNT li ... | CVSS3: 7.8 | 0% Низкий | больше 4 лет назад |
| GHSA-q4c9-gg27-f3pq The io_uring subsystem in the Linux kernel allowed the MAX_RW_COUNT limit to be bypassed in the PROVIDE_BUFFERS operation, which led to negative values being usedin mem_rw when reading /proc/<PID>/mem. This could be used to create a heap overflow leading to arbitrary code execution in the kernel. It was addressed via commit d1f82808877b ("io_uring: truncate lengths larger than MAX_RW_COUNT on provide buffers") (v5.13-rc1) and backported to the stable kernels in v5.12.4, v5.11.21, and v5.10.37. It was introduced in ddf0322db79c ("io_uring: add IORING_OP_PROVIDE_BUFFERS") (v5.7-rc1). | 0% Низкий | больше 3 лет назад | |
 | BDU:2021-04843 Уязвимость подсистемы io_uring ядра операционной системы Linux, связанная с записью за границами буфера в памяти, позволяющая нарушителю выполнить произвольный код | CVSS3: 8.8 | 0% Низкий | почти 5 лет назад |
 | openSUSE-SU-2021:0947-1 Security update for the Linux Kernel | больше 4 лет назад | ||
| openSUSE-SU-2021:0843-1 Security update for the Linux Kernel | больше 4 лет назад | ||
| SUSE-SU-2021:1913-1 Security update for the Linux Kernel | больше 4 лет назад | ||
| SUSE-SU-2021:1912-1 Security update for the Linux Kernel | больше 4 лет назад | ||
| SUSE-SU-2021:1899-1 Security update for the Linux Kernel | больше 4 лет назад | ||
| SUSE-SU-2021:1891-1 Security update for the Linux Kernel | больше 4 лет назад | ||
| SUSE-SU-2021:1890-1 Security update for the Linux Kernel | больше 4 лет назад | ||
| SUSE-SU-2021:1888-1 Security update for the Linux Kernel | больше 4 лет назад | ||
| SUSE-SU-2021:1887-1 Security update for the Linux Kernel | больше 4 лет назад | ||
| SUSE-SU-2021:2421-1 Security update for the Linux Kernel | больше 4 лет назад | ||
| openSUSE-SU-2021:1977-1 Security update for the Linux Kernel | больше 4 лет назад | ||
| openSUSE-SU-2021:1975-1 Security update for the Linux Kernel | больше 4 лет назад | ||
| SUSE-SU-2021:1977-1 Security update for the Linux Kernel | больше 4 лет назад | ||
| SUSE-SU-2021:1975-1 Security update for the Linux Kernel | больше 4 лет назад |
Уязвимостей на страницу