Wind River Support Network

HomeDefectsLIN1021-863
Fixed

LIN1021-863 : Security Advisory - linux - CVE-2021-33909 (SEQ)

Created: Jul 20, 2021    Updated: Sep 25, 2021
Resolved Date: Aug 22, 2021
Found In Version: 10.21.20.1
Fix Version: 10.21.20.2
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Kernel

Description

fs/seq_file.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd89f05.

CREATE(Triage):(User=admin) CVE-2021-33909 (https://nvd.nist.gov/vuln/detail/CVE-2021-33909)

CVEs


Live chat
Online