Lucene search

K
osvGoogleOSV:USN-4879-1
HistoryMar 16, 2021 - 6:51 a.m.

linux, linux-aws, linux-azure, linux-gcp, linux-hwe-5.8, linux-kvm, linux-oracle, linux-raspi vulnerabilities

2021-03-1606:51:28
Google
osv.dev
7

7.2 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

73.3%

It was discovered that the Marvell WiFi-Ex device driver in the Linux
kernel did not properly validate ad-hoc SSIDs. A local attacker could use
this to cause a denial of service (system crash) or possibly execute
arbitrary code. (CVE-2020-36158)

Loris Reiff discovered that the BPF implementation in the Linux kernel did
not properly validate attributes in the getsockopt BPF hook. A local
attacker could possibly use this to cause a denial of service (system
crash). (CVE-2021-20194)