Wind River Support Network

HomeDefectsLIN1019-6813
Fixed

LIN1019-6813 : Security Advisory - linux - CVE-2021-35039

Created: Jul 7, 2021    Updated: Jul 16, 2021
Resolved Date: Jul 16, 2021
Found In Version: 10.19.45.1
Severity: Standard
Applicable for: Wind River Linux LTS 19
Component/s: Kernel

Description

kernel/module.c in the Linux kernel before 5.12.14 mishandles Signature Verification, aka CID-0c18f29aae7c. Without CONFIG_MODULE_SIG, verification that a kernel module is signed, for loading via init_module, does not occur for a module.sig_enforce=1 command-line argument.

CREATE(Triage):(User=admin) [CVE-2021-35039|https://nvd.nist.gov/vuln/detail/CVE-2021-35039]

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube