Bug 2034699 (CVE-2021-0924)
Summary: | CVE-2021-0924 kernel: out-of-bounds read due to a missing bounds check in xhci_vendor_get_ops() of xhci.c | ||
---|---|---|---|
Product: | [Other] Security Response | Reporter: | Guilherme de Almeida Suckevicz <gsuckevi> |
Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> |
Status: | CLOSED NOTABUG | QA Contact: | |
Severity: | high | Docs Contact: | |
Priority: | high | ||
Version: | unspecified | CC: | acaringi, adscvr, airlied, alciregi, bdettelb, bhu, brdeoliv, bskeggs, chwhite, crwood, dhoward, dvlasenk, fhrbata, fpacheco, hdegoede, hkrzesin, jarod, jarodwilson, jburrell, jeremy, jfaracco, jforbes, jglisse, jlelli, jonathan, josef, jshortt, jstancek, jwboyer, kcarcia, kernel-maint, kernel-mgr, lgoncalv, linville, lzampier, masami256, mchehab, nmurray, ptalbert, qzhao, rvrbovsk, scweaver, steved, vkumar, walters, williams |
Target Milestone: | --- | Keywords: | Security |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | If docs needed, set a value | |
Doc Text: |
An out-of-bounds (OOB) memory access flaw was found in xhci_vendor_get_ops in drivers/usb/host/xhci.c in the Linux kernel's xhci platform drivers. In this flaw, a local attacker with user privileges may cause an escalation of privilege due to a missing sanity check.
|
Story Points: | --- |
Clone Of: | Environment: | ||
Last Closed: | 2021-12-23 12:40:50 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | 2034700 | ||
Bug Blocks: | 2034701 |
Description
Guilherme de Almeida Suckevicz
2021-12-21 18:11:56 UTC
Created kernel tracking bugs for this issue: Affects: fedora-all [bug 2034700] This CVE is in code that is not upstream, and not shipped with Fedora. This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2021-0924 |