Thursday, November 4, 2021

Huawei EulerOS: CVE-2021-3753: kernel security update

Description
A race problem was seen in the vt_k_ioctl in drivers/tty/vt/vt_ioctl.c in the Linux kernel, which may cause an out of bounds read in vt as the write access to vc_mode is not protected by lock-in vt_ioctl (KDSETMDE). The highest threat from this vulnerability is to data confidentiality.
Solution(s)
  • huawei-euleros-2_0_sp8-upgrade-bpftool
  • huawei-euleros-2_0_sp8-upgrade-kernel
  • huawei-euleros-2_0_sp8-upgrade-kernel-devel
  • huawei-euleros-2_0_sp8-upgrade-kernel-headers
  • huawei-euleros-2_0_sp8-upgrade-kernel-source
  • huawei-euleros-2_0_sp8-upgrade-kernel-tools
  • huawei-euleros-2_0_sp8-upgrade-kernel-tools-libs
  • huawei-euleros-2_0_sp8-upgrade-perf
  • huawei-euleros-2_0_sp8-upgrade-python-perf
  • huawei-euleros-2_0_sp8-upgrade-python3-perf


  • References
  • https://attackerkb.com/topics/cve-2021-3753
  • CVE - 2021-3753
  • EulerOS-SA-2021-2636




  •  

    Copyright © 2021 Vulnerability Database | Cyber Details™

    thank you Templateism for the design - You should have written the code a little more complicated - Nothing Encrypted anymore