Package kernel-image-un-def updated to version 4.19.183-alt0.M80P.1 for branch p8 in task 268527.

Published: 2021-03-10

BDU:2021-01688

Уязвимость функции rtw_wx_set_scan() (drivers/staging/rtl8188eu/os_dep/ioctl_linux.c) ядра операционных систем Linux, позволяющая нарушителю вызвать отказ в обслуживании

Severity: HIGH (8.8) Vector: AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

CVE-2021-28660

Published: 2021-03-17
Modified: 2024-11-21

CVE-2021-28660

rtw_wx_set_scan in drivers/staging/rtl8188eu/os_dep/ioctl_linux.c in the Linux kernel through 5.11.6 allows writing beyond the end of the ->ssid[] array. NOTE: from the perspective of kernel.org releases, CVE IDs are not normally used for drivers/staging/* (unfinished work); however, system integrators may have situations in which a drivers/staging issue is relevant to their own customer base.

Severity: HIGH (8.8) Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

Version: 2.1.0

Package kernel-image-un-def update in p8 on 2021-03-30

ALT-PU-2021-1577-1

Closed vulnerabilities

BDU:2021-01688

CVE-2021-28660