A heap out-of-bounds write affecting Linux since v2.6.19-rc1 was discovered in net/netfilter/x_tables.c. This allows an attacker to gain privileges or cause a DoS (via heap memory corruption) through user name space. References: https://github.com/google/security-research/security/advisories/GHSA-xxx5-8mvq-3528 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/net/netfilter/x_tables.c?id=b29c457a6511435960115c0f548c4360d5f4801d https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/net/netfilter/x_tables.c?id=9fa492cdc160cd27ce1046cb36f47d3b2b1efa21
Created kernel tracking bugs for this issue: Affects: fedora-all [bug 1980102]
This was fixed for Fedora with the 5.11.15 stable kernel updates.
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2021:3044 https://access.redhat.com/errata/RHSA-2021:3044
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2021:3088 https://access.redhat.com/errata/RHSA-2021:3088
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2021:3057 https://access.redhat.com/errata/RHSA-2021:3057
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2021-22555
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.1 Extended Update Support Via RHSA-2021:3173 https://access.redhat.com/errata/RHSA-2021:3173
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.1 Extended Update Support Via RHSA-2021:3181 https://access.redhat.com/errata/RHSA-2021:3181
This issue has been addressed in the following products: Red Hat Virtualization 4 for Red Hat Enterprise Linux 8 Via RHSA-2021:3235 https://access.redhat.com/errata/RHSA-2021:3235
This issue has been addressed in the following products: Red Hat Enterprise Linux 7.3 Advanced Update Support Via RHSA-2021:3321 https://access.redhat.com/errata/RHSA-2021:3321
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Extended Update Support Via RHSA-2021:3375 https://access.redhat.com/errata/RHSA-2021:3375
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Extended Update Support Via RHSA-2021:3380 https://access.redhat.com/errata/RHSA-2021:3380
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2021:3327 https://access.redhat.com/errata/RHSA-2021:3327
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2021:3328 https://access.redhat.com/errata/RHSA-2021:3328
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Extended Update Support Via RHSA-2021:3363 https://access.redhat.com/errata/RHSA-2021:3363
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2021:3381 https://access.redhat.com/errata/RHSA-2021:3381
This issue has been addressed in the following products: Red Hat Enterprise Linux 7.2 Advanced Update Support Via RHSA-2021:3399 https://access.redhat.com/errata/RHSA-2021:3399
This issue has been addressed in the following products: Red Hat Virtualization 4 for Red Hat Enterprise Linux 7 Via RHSA-2021:3477 https://access.redhat.com/errata/RHSA-2021:3477
This issue has been addressed in the following products: Red Hat Enterprise Linux 7.7 Advanced Update Support Red Hat Enterprise Linux 7.7 Update Services for SAP Solutions Red Hat Enterprise Linux 7.7 Telco Extended Update Support Via RHSA-2021:3522 https://access.redhat.com/errata/RHSA-2021:3522
This issue has been addressed in the following products: Red Hat Enterprise Linux 7.7 Update Services for SAP Solutions Via RHSA-2021:3523 https://access.redhat.com/errata/RHSA-2021:3523
This issue has been addressed in the following products: Red Hat Enterprise Linux 7.4 Advanced Update Support Via RHSA-2021:3725 https://access.redhat.com/errata/RHSA-2021:3725
This issue has been addressed in the following products: Red Hat Enterprise Linux 7.6 Advanced Update Support Red Hat Enterprise Linux 7.6 Update Services for SAP Solutions Red Hat Enterprise Linux 7.6 Telco Extended Update Support Via RHSA-2021:3812 https://access.redhat.com/errata/RHSA-2021:3812
This issue has been addressed in the following products: Red Hat Enterprise Linux 7.6 Update Services for SAP Solutions Via RHSA-2021:3814 https://access.redhat.com/errata/RHSA-2021:3814