Lucene search

K
ubuntucveUbuntu.comUB:CVE-2021-33656
HistoryJul 18, 2022 - 12:00 a.m.

CVE-2021-33656

2022-07-1800:00:00
ubuntu.com
ubuntu.com
32
cve-2021-33656
ioctl command
memory bounds
unix

CVSS3

6.8

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

32.6%

When setting font with malicous data by ioctl cmd PIO_FONT,kernel will
write memory out of bounds.

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchlinux< 4.15.0-192.203UNKNOWN
ubuntu20.04noarchlinux< 5.4.0-125.141UNKNOWN
ubuntu16.04noarchlinux< 4.4.0-234.268UNKNOWN
ubuntu18.04noarchlinux-aws< 4.15.0-1140.151UNKNOWN
ubuntu20.04noarchlinux-aws< 5.4.0-1084.91UNKNOWN
ubuntu14.04noarchlinux-aws< 4.4.0-1113.119UNKNOWN
ubuntu16.04noarchlinux-aws< 4.4.0-1150.165UNKNOWN
ubuntu18.04noarchlinux-aws-5.4< 5.4.0-1084.91~18.04.1UNKNOWN
ubuntu16.04noarchlinux-aws-hwe< 4.15.0-1140.151~16.04.1UNKNOWN
ubuntu20.04noarchlinux-azure< 5.4.0-1090.95UNKNOWN
Rows per page:
1-10 of 401

References

CVSS3

6.8

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

32.6%