Branch p8 update bulletin.

Package kernel-image-un-def updated to version 4.19.225-alt0.M80P.1 for branch p8 in task 293373.

Published: 2021-12-15

BDU:2022-00680

Уязвимость функции package_set_ring компонента net/packet/af_packet.c ядра операционной системы Linux, позволяющая нарушителю повысить свои привилегии в системе или вызвать отказ в обслуживании

Severity: HIGH (8.8) Vector: AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References:

CVE-2021-22600

Published: 2022-01-26
Modified: 2024-11-21

CVE-2021-22600

A double free bug in packet_set_ring() in net/packet/af_packet.c can be exploited by a local user through crafted syscalls to escalate privileges or deny service. We recommend upgrading kernel past the effected versions or rebuilding past ec6af094ea28f0f2dda1a6a33b14cd57e36a9755

Severity: HIGH (7.0) Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

References:

Version: 2.1.0

Branch p8 update on 2022-01-26

ALT-BU-2022-3795-1

ALT-PU-2022-1050-1

Closed vulnerabilities

BDU:2022-00680

CVE-2021-22600