Lucene search

K
ubuntucveUbuntu.comUB:CVE-2021-38160
HistoryAug 07, 2021 - 12:00 a.m.

CVE-2021-38160

2021-08-0700:00:00
ubuntu.com
ubuntu.com
29
data corruption
untrusted device
linux kernel

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

0

Percentile

14.2%

DISPUTED In drivers/char/virtio_console.c in the Linux kernel before
5.13.4, data corruption or loss can be triggered by an untrusted device
that supplies a buf->len value exceeding the buffer size. NOTE: the vendor
indicates that the cited data corruption is not a vulnerability in any
existing use case; the length validation was added solely for robustness in
the face of anomalous host OS behavior.

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchlinux< 4.15.0-156.163UNKNOWN
ubuntu20.04noarchlinux< 5.4.0-88.99UNKNOWN
ubuntu21.04noarchlinux< 5.11.0-37.41UNKNOWN
ubuntu16.04noarchlinux< 4.4.0-222.255UNKNOWN
ubuntu18.04noarchlinux-aws< 4.15.0-1111.118UNKNOWN
ubuntu20.04noarchlinux-aws< 5.4.0-1057.60UNKNOWN
ubuntu21.04noarchlinux-aws< 5.11.0-1019.20UNKNOWN
ubuntu14.04noarchlinux-aws< 4.4.0-1102.107UNKNOWN
ubuntu16.04noarchlinux-aws< 4.4.0-1138.152UNKNOWN
ubuntu20.04noarchlinux-aws-5.11< 5.11.0-1019.20~20.04.1UNKNOWN
Rows per page:
1-10 of 561

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

0

Percentile

14.2%