Lucene search

K
f5F5F5:K65280235
HistoryMay 24, 2022 - 12:00 a.m.

K65280235 : Linux vulnerability CVE-2021-42252

2022-05-2400:00:00
my.f5.com
30
linux kernel
aspeed lpc
memory overwrite
privilege execution
cve-2021-42252
vulnerability

AI Score

7.2

Confidence

High

EPSS

0

Percentile

5.1%

Security Advisory Description

An issue was discovered in aspeed_lpc_ctrl_mmap in drivers/soc/aspeed/aspeed-lpc-ctrl.c in the Linux kernel before 5.14.6. Local attackers able to access the Aspeed LPC control interface could overwrite memory in the kernel and potentially execute privileges, aka CID-b49a0e69a7b1. This occurs because a certain comparison uses values that are not memory sizes. (CVE-2021-42252)

Impact

There is no impact; F5 products are not affected by this vulnerability.