In __hidinput_change_resolution_multipliers of hid-input.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. References: https://source.android.com/security/bulletin/2021-06-01 https://android.googlesource.com/kernel/common/+/ed9be64eefe2
Created kernel tracking bugs for this issue: Affects: fedora-all [bug 1974492]
This was fixed for Fedora with the 5.10.19 stable kernel updates.
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Extended Update Support Via RHSA-2021:3443 https://access.redhat.com/errata/RHSA-2021:3443
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Extended Update Support Via RHSA-2021:3445 https://access.redhat.com/errata/RHSA-2021:3445
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Extended Update Support Via RHSA-2021:3446 https://access.redhat.com/errata/RHSA-2021:3446
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2021-0512
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2021:4056 https://access.redhat.com/errata/RHSA-2021:4056
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2021:4088 https://access.redhat.com/errata/RHSA-2021:4088
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2021:4122 https://access.redhat.com/errata/RHSA-2021:4122
This issue has been addressed in the following products: Red Hat Virtualization 4 for Red Hat Enterprise Linux 8 Via RHSA-2021:4750 https://access.redhat.com/errata/RHSA-2021:4750