A vulnerability was found due to a corrupted timer tree that caused a task wakeup to be missing in timerqueue_add in lib/timerqueue.c. This flaw may allow a local attacker with special user privilege to cause a denial of service problem, and system slowly dies while running OSP. Upstream commit: https://git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git/commit/?id=511885d7061eda3eb1faf3f57dcc936ff75863f1
Hi, the fixed version should probably be 5.4-rc1. Is this correct? The documentation text mentions 5.3-rc1.
In reply to comment #10: > Hi, the fixed version should probably be 5.4-rc1. Is this correct? The > documentation text mentions 5.3-rc1. you are right, thank you. fixed.
(In reply to Petr Matousek from comment #11) > In reply to comment #10: > > Hi, the fixed version should probably be 5.4-rc1. Is this correct? The > > documentation text mentions 5.3-rc1. > > you are right, thank you. fixed. Thanks for confirming and fixing up the fixed version information.
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2021:4646 https://access.redhat.com/errata/RHSA-2021:4646
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.4 Extended Update Support Via RHSA-2021:4648 https://access.redhat.com/errata/RHSA-2021:4648
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.4 Extended Update Support Via RHSA-2021:4650 https://access.redhat.com/errata/RHSA-2021:4650
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2021:4647 https://access.redhat.com/errata/RHSA-2021:4647
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Extended Update Support Via RHSA-2021:4875 https://access.redhat.com/errata/RHSA-2021:4875
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Extended Update Support Via RHSA-2021:4871 https://access.redhat.com/errata/RHSA-2021:4871
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2021-20317