Ubuntu.comUB:CVE-2021-46920CVE-2021-46920
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
AI Score
Confidence
High
EPSS
Percentile
15.5%
In the Linux kernel, the following vulnerability has been resolved:
dmaengine: idxd: Fix clobbering of SWERR overflow bit on writeback Current
code blindly writes over the SWERR and the OVERFLOW bits. Write back the
bits actually read instead so the driver avoids clobbering the OVERFLOW bit
that comes after the register is read.
References
git.kernel.org/linus/ea941ac294d75d0ace50797aebf0056f6f8f7a7f (5.12-rc8)
git.kernel.org/stable/c/02981a44a0e402089775416371bd2e0c935685f8
git.kernel.org/stable/c/a5ad12d5d69c63af289a37f05187a0c6fe93553d
git.kernel.org/stable/c/ea941ac294d75d0ace50797aebf0056f6f8f7a7f
launchpad.net/bugs/cve/CVE-2021-46920
nvd.nist.gov/vuln/detail/CVE-2021-46920
security-tracker.debian.org/tracker/CVE-2021-46920
www.cve.org/CVERecord?id=CVE-2021-46920
Related
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
AI Score
Confidence
High
EPSS
Percentile
15.5%