Wind River Support Network

HomeDefectsLIN1021-2642
Fixed

LIN1021-2642 : Security Advisory - linux - CVE-2021-22600

Created: Jan 26, 2022    Updated: Feb 13, 2022
Resolved Date: Feb 8, 2022
Found In Version: 10.21.20.1
Fix Version: 10.21.20.9
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Kernel

Description

A double free bug in packet_set_ring() in net/packet/af_packet.c can be exploited by a local user through crafted syscalls to escalate privileges or deny service. We recommend upgrading kernel past the effected versions or rebuilding past ec6af094ea28f0f2dda1a6a33b14cd57e36a9755

CREATE(Triage):(User=admin) CVE-2021-22600 (https://nvd.nist.gov/vuln/detail/CVE-2021-22600)

CVEs


Live chat
Online