ALT Linux Team

Package kernel-image-rt update in sisyphus on 2021-04-10

ALT-PU-2021-1626-1

Package kernel-image-rt updated to version 4.19.184-alt1.rt75 for branch sisyphus in task 269013.

Closed vulnerabilities

Published: 2021-03-10

BDU:2021-01688

Уязвимость функции rtw_wx_set_scan() (drivers/staging/rtl8188eu/os_dep/ioctl_linux.c) ядра операционных систем Linux, позволяющая нарушителю вызвать отказ в обслуживании

Severity: HIGH (8.8) Vector: AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity: HIGH (8.3) Vector: AV:A/AC:L/Au:N/C:C/I:C/A:C
References:
Published: 2021-03-17
Modified: 2024-11-21

CVE-2021-28660

rtw_wx_set_scan in drivers/staging/rtl8188eu/os_dep/ioctl_linux.c in the Linux kernel through 5.11.6 allows writing beyond the end of the ->ssid[] array. NOTE: from the perspective of kernel.org releases, CVE IDs are not normally used for drivers/staging/* (unfinished work); however, system integrators may have situations in which a drivers/staging issue is relevant to their own customer base.

Severity: HIGH (8.3) Vector: AV:A/AC:L/Au:N/C:C/I:C/A:C
Severity: HIGH (8.8) Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
References:
VKontakte | Telegram | YouTube | Forum | GitHub | Bugzilla
Version: 2.1.2
Back to top