GSD-2021-1002733

See a problem?
Please try reporting it to the source first.

Source

https://data.gsd.id/GSD-2021-1002733

Import Source

https://github.com/cloudsecurityalliance/gsd-database/blob/main/2021/1002xxx/GSD-2021-1002733.json

JSON Data

https://api.osv.dev/v1/vulns/GSD-2021-1002733

Published

2021-12-27T05:45:21.517252Z

Modified

2023-02-22T09:44:03.655788Z

Summary

vduse: check that offset is within bounds in get_config()

Details

vduse: check that offset is within bounds in get_config()

This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.11 by commit ebbbc5fea3f648175df1aa3f127c78eb0252cc2a, it was introduced in version v5.15 by commit c8a6153b6c59d95c0e091f053f6f180952ade91e. For more details please see the references link.

References

Affected packages

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/
Events: Introduced

c8a6153b6c59d95c0e091f053f6f180952ade91e

Limit

ebbbc5fea3f648175df1aa3f127c78eb0252cc2a

Affected versions

v5.*

v5.15

v5.15-rc1

v5.15-rc2

v5.15-rc3

v5.15-rc4

v5.15-rc5

v5.15-rc6

v5.15-rc7

v5.15.1

v5.15.10

v5.15.2

v5.15.3

v5.15.4

v5.15.5

v5.15.6

v5.15.7

v5.15.8

v5.15.9

Database specific

source

"https://github.com/cloudsecurityalliance/gsd-database/blob/main/2021/1002xxx/GSD-2021-1002733.json"