Date
1 - 7 of 7
New CVE entries this week
Pavel Machek
Hi!
These are the new issues this week: Best regards, Pavel * 2021-06-04 CVE-2021-33200 -- BPF fix turned out to be buggy. * 2021-06-09 CVE-2021-0606 -- EoP in GPU DRM Driver / reported by android, probably upstream commit e7cdf5c82f1773c3386b93bbcf13b9bfff29fa31 ... may be interesting? CVE-2021-3587 -- redhat Bugzilla 1968057: CVE-2021-3587 kernel: nfc: Null pointer dereference in llcp_sock_getname CVE-2020-36385 -- An issue was discovered in the Linux kernel before 5.8.1. net/bluetooth/hci_event.c has a slab out-of-bounds read in hci_extended_inquiry_result_evt, aka CID-51c19bf3d5cf. CVE-2020-36387 -- An issue was discovered in the Linux kernel before 5.8.2. fs/io_uring.c has a use-after-free related to io_async_task_func and ctx reference holding, aka CID-6d816e088c35. -- DENX Software Engineering GmbH, Managing Director: Wolfgang Denk HRB 165235 Munich, Office: Kirchenstr.5, D-82194 Groebenzell, Germany
|
|
Masami Ichikawa
Hi!
2021年6月11日(金) 2:05 Pavel Machek <pavel@...>: According to the CVE-2020-36385.yml, it describes 'RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy'. However, the description of 'An issue was discovered in the Linux kernel before 5.8.1 ...' seems like CVE-2020-36386. CVE-2020-36387 -- An issue was discovered in the Linux kernel before 5.8.2. fs/io_uring.c has a use-after-free related to io_async_task_func and ctx reference holding, aka CID-6d816e088c35.Sincerely, -- Masami Ichikawa Cybertrust Japan Co., Ltd. Email :masami.ichikawa@... :masami.ichikawa@...
|
|
市川正美 <masami.ichikawa@...>
Hi!
2021年6月11日(金) 2:05 Pavel Machek <pavel@...>: According to the CVE-2020-36385.yml it describes 'RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy'. However According to the CVE-2020-36385.yml it describes 'RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy'. However, the description of 'An issue was discovered in the Linux kernel before 5.8.1 ...' seems like CVE-2020-36386. CVE-2020-36387 -- An issue was discovered in the Linux kernel before 5.8.2. fs/io_uring.c has a use-after-free related to io_async_task_func and ctx reference holding, aka CID-6d816e088c35.
|
|
Masami Ichikawa
Hi!
toggle quoted messageShow quoted text
Please ignore my 2nd email from masami.ichikawa@.... It's my mistake. Cheers,
On Thu, Jun 17, 2021 at 7:55 PM 市川正美 <masami.ichikawa@...> wrote:
--
/** * Masami Ichikawa * personal: masami256@... * fedora project: masami@... */
|
|
Pavel Machek
Hi!
You are right, something went wrong with the import. It is correctedCVE-2020-36385 -- An issue was discovered in the Linux kernel before 5.8.1. net/bluetooth/hci_event.c has a slab out-of-bounds read in hci_extended_inquiry_result_evt, aka CID-51c19bf3d5cf.According to the CVE-2020-36385.yml it describes 'RDMA/ucma: Rework now. Best regards, Pavel -- DENX Software Engineering GmbH, Managing Director: Wolfgang Denk HRB 165235 Munich, Office: Kirchenstr.5, D-82194 Groebenzell, Germany
|
|
Pavel Machek
Hi!
In last import, CVE-2020-36385 and CVE-2020-36386 was confused. That's fixed now. And we have following new issues: * 2021-06-13 CVE-2021-0129 -- Passkey Entry protocol of the Bluetooth Core is vulnerable to an impersonation, fixed 4.9+ CVE-2021-0512 -- HID arrays, fixed 4.9+ CVE-2021-28691 -- Xen, fixed 5.10+ CVE-2021-3573 -- Bluetooth UAF, fixed 4.9+ * 2021-06-18 CVE-2021-32078 -- ARM: footbridge:, hopefully noone uses this CVE-2021-34693 -- can: bcm: fix infoleak in struct bcm_msg_head CVE-2020-36386 -- An issue was discovered in the Linux kernel before 5.8.1. net/bluetooth/hci_event.c has a slab out-of-bounds read in hci_extended_inquiry_result_evt, aka CID-51c19bf3d5cf. Best regards, Pavel -- DENX Software Engineering GmbH, Managing Director: Wolfgang Denk HRB 165235 Munich, Office: Kirchenstr.5, D-82194 Groebenzell, Germany
|
|
Masami Ichikawa
Hi!
2021年6月18日(金) 17:04 Pavel Machek <pavel@...>: Thank you for the update. Best regards, -- Masami Ichikawa Cybertrust Japan Co., Ltd. Email :masami.ichikawa@... :masami.ichikawa@...
|
|