Details of VAR-202103-1240

ID

VAR-202103-1240

CVE

CVE-2021-28964

TITLE

Linux Kernel Race Vulnerability in

Trust: 0.8

sources: JVNDB: JVNDB-2021-004731

DESCRIPTION

A race condition was discovered in get_old_root in fs/btrfs/ctree.c in the Linux kernel through 5.11.8. It allows attackers to cause a denial of service (BUG) because of a lack of locking on an extent buffer before a cloning operation, aka CID-dbcc7d57bffc. Vendor exploits this vulnerability CID-dbcc7d57bffc Is published as.Denial of service (DoS) It may be put into a state. A physically proximate attacker could use this issue to inject packets. ========================================================================== Ubuntu Security Notice USN-4948-1 May 11, 2021 linux-oem-5.10 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 20.04 LTS Summary: Several security issues were fixed in the Linux kernel. Software Description: - linux-oem-5.10: Linux kernel for OEM systems Details: Ryota Shiga discovered that the eBPF implementation in the Linux kernel did not properly verify that a BPF program only reserved as much memory for a ring buffer as was allocated. A local attacker could use this to cause a denial of service (system crash) or execute arbitrary code. (CVE-2021-3489) Manfred Paul discovered that the eBPF implementation in the Linux kernel did not properly track bounds on bitwise operations. A local attacker could use this to cause a denial of service (system crash) or execute arbitrary code. A local attacker could use this to cause a denial of service (system crash) or execute arbitrary code. (CVE-2021-3491) Kiyin (尹亮) discovered that the NFC LLCP protocol implementation in the Linux kernel contained a reference counting error. A local attacker could use this to cause a denial of service (system crash). (CVE-2020-25670) Kiyin (尹亮) discovered that the NFC LLCP protocol implementation in the Linux kernel did not properly deallocate memory in certain error situations. A local attacker could use this to cause a denial of service (memory exhaustion). (CVE-2020-25671, CVE-2020-25672) It was discovered that the Xen paravirtualization backend in the Linux kernel did not properly deallocate memory in some situations. A local attacker could use this to cause a denial of service (memory exhaustion). A local attacker could use this to cause a denial of service. (CVE-2021-28951) John Stultz discovered that the audio driver for Qualcomm SDM845 systems in the Linux kernel did not properly validate port ID numbers. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. A local attacker could possibly use this to cause a denial of service (system crash). (CVE-2021-28964) Vince Weaver discovered that the perf subsystem in the Linux kernel did not properly handle certain PEBS records properly for some Intel Haswell processors. A local attacker could use this cause a denial of service (system crash). (CVE-2021-28971) It was discovered that the RPA PCI Hotplug driver implementation in the Linux kernel did not properly handle device name writes via sysfs, leading to a buffer overflow. A privileged attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2021-28972) It was discovered that the Freescale Gianfar Ethernet driver for the Linux kernel did not properly handle receive queue overrun when jumbo frames were enabled in some situations. An attacker could use this to cause a denial of service (system crash). An attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2021-29266) It was discovered that the TIPC protocol implementation in the Linux kernel did not properly validate passed encryption key sizes. A local attacker could use this to cause a denial of service (system crash). (CVE-2021-29646) It was discovered that the Qualcomm IPC router implementation in the Linux kernel did not properly initialize memory passed to user space. A local attacker could use this to expose sensitive information (kernel memory). (CVE-2021-29647) It was discovered that the BPF user mode driver implementation in the Linux kernel did not properly deallocate memory in some situations. A local attacker could use this to cause a denial of service (memory exhaustion). A local attacker could use this to cause a denial of service (system crash). (CVE-2021-29650) Felix Wilhelm discovered that the KVM implementation in the Linux kernel for AMD processors contained race conditions on nested VMCB controls. A local attacker in a guest vm could possibly use this to gain elevated privileges. (CVE-2021-29657) Dan Carpenter discovered that the block device manager (dm) implementation in the Linux kernel contained a buffer overflow in the ioctl for listing devices. A privileged local attacker could use this to cause a denial of service (system crash). (CVE-2021-31916) 马哲宇 discovered that the IEEE 1394 (Firewire) nosy packet sniffer driver in the Linux kernel did not properly perform reference counting in some situations, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2021-3483) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 20.04 LTS: linux-image-5.10.0-1026-oem 5.10.0-1026.27 linux-image-oem-20.04b 5.10.0.1026.27 After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-4948-1 CVE-2020-25670, CVE-2020-25671, CVE-2020-25672, CVE-2021-28688, CVE-2021-28951, CVE-2021-28952, CVE-2021-28964, CVE-2021-28971, CVE-2021-28972, CVE-2021-29264, CVE-2021-29266, CVE-2021-29646, CVE-2021-29647, CVE-2021-29649, CVE-2021-29650, CVE-2021-29657, CVE-2021-31916, CVE-2021-3483, CVE-2021-3489, CVE-2021-3490, CVE-2021-3491 Package Information: https://launchpad.net/ubuntu/+source/linux-oem-5.10/5.10.0-1026.27

Trust: 2.25

sources: NVD: CVE-2021-28964 // JVNDB: JVNDB-2021-004731 // VULHUB: VHN-388477 // VULMON: CVE-2021-28964 // PACKETSTORM: 162969 // PACKETSTORM: 162981 // PACKETSTORM: 162939 // PACKETSTORM: 166568 // PACKETSTORM: 162549

AFFECTED PRODUCTS

vendor:	fedoraproject	model:	fedora	scope:	eq	version:	34	Trust: 1.0
vendor:	fedoraproject	model:	fedora	scope:	eq	version:	32	Trust: 1.0
vendor:	netapp	model:	cloud backup	scope:	eq	version:	-	Trust: 1.0
vendor:	netapp	model:	aff a250	scope:	eq	version:	-	Trust: 1.0
vendor:	linux	model:	kernel	scope:	lte	version:	5.11.8	Trust: 1.0
vendor:	netapp	model:	fas 500f	scope:	eq	version:	-	Trust: 1.0
vendor:	netapp	model:	solidfire baseboard management controller	scope:	eq	version:	-	Trust: 1.0
vendor:	debian	model:	linux	scope:	eq	version:	9.0	Trust: 1.0
vendor:	fedoraproject	model:	fedora	scope:	eq	version:	33	Trust: 1.0
vendor:	linux	model:	kernel	scope:	lte	version:	5.11.8 until	Trust: 0.8
vendor:	fedora	model:	fedora	scope:	-	version:	-	Trust: 0.8

sources: JVNDB: JVNDB-2021-004731 // NVD: CVE-2021-28964

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2021-28964
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2021-28964
value:	MEDIUM
Trust: 0.8
CNNVD:	CNNVD-202103-1265
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-388477
value:	LOW
Trust: 0.1
VULMON:	CVE-2021-28964
value:	LOW
Trust: 0.1

nvd@nist.gov:	CVE-2021-28964
severity:	LOW
baseScore:	1.9
vectorString:	AV:L/AC:M/AU:N/C:N/I:N/A:P
accessVector:	LOCAL
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	3.4
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.9
VULHUB:	VHN-388477
severity:	LOW
baseScore:	1.9
vectorString:	AV:L/AC:M/AU:N/C:N/I:N/A:P
accessVector:	LOCAL
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	3.4
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2021-28964
baseSeverity:	MEDIUM
baseScore:	4.7
vectorString:	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
attackVector:	LOCAL
attackComplexity:	HIGH
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	1.0
impactScore:	3.6
version:	3.1
Trust: 1.0
NVD:	CVE-2021-28964
baseSeverity:	MEDIUM
baseScore:	4.7
vectorString:	CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
attackVector:	LOCAL
attackComplexity:	HIGH
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: VULHUB: VHN-388477 // VULMON: CVE-2021-28964 // JVNDB: JVNDB-2021-004731 // CNNVD: CNNVD-202103-1265 // NVD: CVE-2021-28964

PROBLEMTYPE DATA

problemtype:	CWE-362	Trust: 1.1
problemtype:	Race condition (CWE-362) [NVD Evaluation ]	Trust: 0.8

sources: VULHUB: VHN-388477 // JVNDB: JVNDB-2021-004731 // NVD: CVE-2021-28964

THREAT TYPE

local

Trust: 1.0

sources: PACKETSTORM: 162969 // PACKETSTORM: 162939 // PACKETSTORM: 166568 // PACKETSTORM: 162549 // CNNVD: CNNVD-202103-1265

TYPE

competition condition problem

Trust: 0.6

sources: CNNVD: CNNVD-202103-1265

PATCH

title:	btrfs	url:	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4VCKIOXCOZGXBEZMO5LGGV5MWCHO6FT3/	Trust: 0.8
title:	Linux kernel Repair measures for the competition condition problem loophole	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=145653	Trust: 0.6
title:	Red Hat: CVE-2021-28964	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_cve_database&qid=CVE-2021-28964	Trust: 0.1
title:	Arch Linux Issues:	url:	https://vulmon.com/vendoradvisory?qidtp=arch_linux_issues&qid=CVE-2021-28964 log	Trust: 0.1

sources: VULMON: CVE-2021-28964 // JVNDB: JVNDB-2021-004731 // CNNVD: CNNVD-202103-1265

EXTERNAL IDS

db:	NVD	id:	CVE-2021-28964	Trust: 3.1
db:	PACKETSTORM	id:	166568	Trust: 0.8
db:	PACKETSTORM	id:	162939	Trust: 0.8
db:	PACKETSTORM	id:	162981	Trust: 0.8
db:	PACKETSTORM	id:	162549	Trust: 0.8
db:	JVNDB	id:	JVNDB-2021-004731	Trust: 0.8
db:	CNNVD	id:	CNNVD-202103-1265	Trust: 0.7
db:	AUSCERT	id:	ESB-2021.1919	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.1299	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.1625	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.1655	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.2217	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.1231	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.2136	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.1307	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.1964	Trust: 0.6
db:	AUSCERT	id:	ESB-2022.1408	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.1946	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.1694	Trust: 0.6
db:	PACKETSTORM	id:	162969	Trust: 0.2
db:	VULHUB	id:	VHN-388477	Trust: 0.1
db:	VULMON	id:	CVE-2021-28964	Trust: 0.1

sources: VULHUB: VHN-388477 // VULMON: CVE-2021-28964 // JVNDB: JVNDB-2021-004731 // PACKETSTORM: 162969 // PACKETSTORM: 162981 // PACKETSTORM: 162939 // PACKETSTORM: 166568 // PACKETSTORM: 162549 // CNNVD: CNNVD-202103-1265 // NVD: CVE-2021-28964

REFERENCES

url:	https://nvd.nist.gov/vuln/detail/cve-2021-28964	Trust: 1.9
url:	https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=dbcc7d57bffc0c8cac9dac11bec548597d59a6a5	Trust: 1.8
url:	https://security.netapp.com/advisory/ntap-20210430-0003/	Trust: 1.7
url:	https://lists.debian.org/debian-lts-announce/2021/06/msg00020.html	Trust: 1.7
url:	https://lists.debian.org/debian-lts-announce/2021/06/msg00019.html	Trust: 1.7
url:	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4vckioxcozgxbezmo5lggv5mwcho6ft3/	Trust: 1.0
url:	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ptrnpqtz4gvs46sz4obxy5ydogvpstgq/	Trust: 1.0
url:	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/t2s3i4slrnruqdofyus6iuazmqnmpnlg/	Trust: 1.0
url:	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4vckioxcozgxbezmo5lggv5mwcho6ft3/	Trust: 0.8
url:	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/t2s3i4slrnruqdofyus6iuazmqnmpnlg/	Trust: 0.8
url:	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ptrnpqtz4gvs46sz4obxy5ydogvpstgq/	Trust: 0.8
url:	https://packetstormsecurity.com/files/162939/ubuntu-security-notice-usn-4979-1.html	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.1919	Trust: 0.6
url:	https://packetstormsecurity.com/files/162981/ubuntu-security-notice-usn-4984-1.html	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.1964	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.2217	Trust: 0.6
url:	https://packetstormsecurity.com/files/162549/ubuntu-security-notice-usn-4948-1.html	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.1655	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.1946	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.1307	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.1625	Trust: 0.6
url:	https://vigilance.fr/vulnerability/linux-kernel-denial-of-service-via-get-old-root-34912	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.1231	Trust: 0.6
url:	https://packetstormsecurity.com/files/166568/ubuntu-security-notice-usn-5361-1.html	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.2136	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.1299	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.1694	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2022.1408	Trust: 0.6
url:	https://nvd.nist.gov/vuln/detail/cve-2021-31916	Trust: 0.5
url:	https://nvd.nist.gov/vuln/detail/cve-2021-28972	Trust: 0.4
url:	https://nvd.nist.gov/vuln/detail/cve-2021-29647	Trust: 0.4
url:	https://nvd.nist.gov/vuln/detail/cve-2021-28971	Trust: 0.4
url:	https://nvd.nist.gov/vuln/detail/cve-2021-3483	Trust: 0.4
url:	https://nvd.nist.gov/vuln/detail/cve-2020-25670	Trust: 0.3
url:	https://nvd.nist.gov/vuln/detail/cve-2021-28688	Trust: 0.3
url:	https://nvd.nist.gov/vuln/detail/cve-2021-28950	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2021-29264	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2020-25673	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2021-28660	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2021-28952	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2021-33033	Trust: 0.2
url:	https://cwe.mitre.org/data/definitions/362.html	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2021-28964	Trust: 0.1
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/198508	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/linux-oracle/5.4.0-1046.50	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/linux-hwe-5.4/5.4.0-74.83~18.04.1	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/linux-kvm/5.4.0-1040.41	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/linux-gke-5.4/5.4.0-1044.46~18.04.1	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/linux-gcp-5.4/5.4.0-1044.47~18.04.2	Trust: 0.1
url:	https://ubuntu.com/security/notices/usn-4982-1	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/linux-gcp/5.4.0-1044.47	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/linux-gkeop/5.4.0-1016.17	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/linux-azure/5.4.0-1048.50	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/linux/5.4.0-74.83	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/linux-oracle-5.4/5.4.0-1046.50~18.04.2	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/linux-gke/5.4.0-1044.46	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/linux-azure-5.4/5.4.0-1048.50~18.04.1	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/linux-aws-5.4/5.4.0-1049.51~18.04.1	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/linux-gkeop-5.4/5.4.0-1016.17~18.04.1	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/linux-aws/5.4.0-1049.51	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/linux-azure/5.8.0-1033.35	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-28038	Trust: 0.1
url:	https://ubuntu.com/security/notices/usn-4984-1	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/linux/5.8.0-55.62	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/linux-kvm/5.8.0-1028.30	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/linux-aws/5.8.0-1035.37	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/linux-oracle/5.8.0-1031.32	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/linux-gcp/5.8.0-1032.34	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/linux-hwe-5.8/5.8.0-55.62~20.04.1	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-30002	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-3428	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/linux-kvm/4.15.0-1092.94	Trust: 0.1
url:	https://ubuntu.com/security/notices/usn-4979-1	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/linux-azure-4.15/4.15.0-1115.128	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/linux-aws/4.15.0-1103.110	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/linux-gcp-4.15/4.15.0-1100.113	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/linux-oracle/4.15.0-1072.80	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/linux/4.15.0-144.148	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/linux-snapdragon/4.15.0-1103.112	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-42739	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-0920	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-37159	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-4083	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-26145	Trust: 0.1
url:	https://ubuntu.com/security/notices/usn-5361-1	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-0935	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-45486	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-26141	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-3702	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-12888	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-39636	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-43976	Trust: 0.1
url:	https://ubuntu.com/security/notices/usn-4948-1	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-29650	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/linux-oem-5.10/5.10.0-1026.27	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-29266	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-3489	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-29657	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-29649	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-28951	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-3490	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-3491	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-29646	Trust: 0.1

CREDITS

Ubuntu

Trust: 1.1

sources: PACKETSTORM: 162969 // PACKETSTORM: 162981 // PACKETSTORM: 162939 // PACKETSTORM: 166568 // PACKETSTORM: 162549 // CNNVD: CNNVD-202103-1265

SOURCES

db:	VULHUB	id:	VHN-388477
db:	VULMON	id:	CVE-2021-28964
db:	JVNDB	id:	JVNDB-2021-004731
db:	PACKETSTORM	id:	162969
db:	PACKETSTORM	id:	162981
db:	PACKETSTORM	id:	162939
db:	PACKETSTORM	id:	166568
db:	PACKETSTORM	id:	162549
db:	CNNVD	id:	CNNVD-202103-1265
db:	NVD	id:	CVE-2021-28964

LAST UPDATE DATE

2024-08-14T12:49:33.283000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-388477	date:	2022-06-30T00:00:00
db:	VULMON	id:	CVE-2021-28964	date:	2021-03-30T00:00:00
db:	JVNDB	id:	JVNDB-2021-004731	date:	2021-11-29T06:03:00
db:	CNNVD	id:	CNNVD-202103-1265	date:	2022-04-02T00:00:00
db:	NVD	id:	CVE-2021-28964	date:	2023-11-07T03:32:25.077

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-388477	date:	2021-03-22T00:00:00
db:	VULMON	id:	CVE-2021-28964	date:	2021-03-22T00:00:00
db:	JVNDB	id:	JVNDB-2021-004731	date:	2021-11-29T00:00:00
db:	PACKETSTORM	id:	162969	date:	2021-06-04T13:36:04
db:	PACKETSTORM	id:	162981	date:	2021-06-04T22:09:37
db:	PACKETSTORM	id:	162939	date:	2021-06-03T14:55:48
db:	PACKETSTORM	id:	166568	date:	2022-04-01T15:43:33
db:	PACKETSTORM	id:	162549	date:	2021-05-12T13:52:40
db:	CNNVD	id:	CNNVD-202103-1265	date:	2021-03-22T00:00:00
db:	NVD	id:	CVE-2021-28964	date:	2021-03-22T09:15:13.517