ID

VAR-202105-1451


CVE

CVE-2021-22543


TITLE

KVM Buffer error vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-202105-1684

DESCRIPTION

An issue was discovered in Linux: KVM through Improper handling of VM_IO|VM_PFNMAP vmas in KVM can bypass RO checks and can lead to pages being freed while still accessible by the VMM and guest. This allows users with the ability to start and control a VM to read/write random pages of memory and can result in local privilege escalation. Arch Linux is an application system of Arch open source. A lightweight and flexible Linux® distribution that tries to keep it simple. 7.6) - ppc64le, x86_64 3. Description: This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Description: The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Bug Fix(es): * Indefinite waiting for RCU callback while removing cgroup (BZ#1967844) * kernel-rt: update to the latest RHEL7.9.z9 source tree (BZ#2002994) 4. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ===================================================================== Red Hat Security Advisory Synopsis: Important: kernel security and bug fix update Advisory ID: RHSA-2021:3801-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2021:3801 Issue date: 2021-10-12 CVE Names: CVE-2021-3653 CVE-2021-3656 CVE-2021-22543 CVE-2021-37576 ===================================================================== 1. Summary: An update for kernel is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Client (v. 7) - noarch, x86_64 Red Hat Enterprise Linux Client Optional (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode (v. 7) - noarch, x86_64 Red Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64 Red Hat Enterprise Linux Server (v. 7) - noarch, ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 7) - ppc64, ppc64le, x86_64 Red Hat Enterprise Linux Workstation (v. 7) - noarch, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64 3. Description: The kernel packages contain the Linux kernel, the core of any Linux operating system. Bug Fix(es): * Kernel panic due to double fault with DLM reporting for socket error "sk_err=32/0" (BZ#1834878) * "MFW indication via attention" message getting logged frequently after every 5 minutes (BZ#1854544) * lpfc fails to discovery in pt2pt with "2754 PRLI failure DID:0000EF Status:x9/x91e00, data: x0" (BZ#1922479) * pcpu_get_vm_areas using most memory from VmallocUsed (BZ#1970618) * RHEL 7.9.z [qedf driver] Racing condition between qedf_cleanup_fcport and releasing command after timeout (BZ#1982702) * [Azure] RHEL 7.9 reports GPU/IB topology incorrectly on some Azure SKUs (BZ#1984128) * [stable guest ABI]Hot add CPU after migration cause guest hang (BZ#1991856) * i40e driver crash at RIP: i40e_config_vf_promiscuous_mode+0x165 (BZ#1993850) * [nfs] Performance issue since commit 5a4f6f11951e (BZ#1995649) * [kernel] Indefinite waiting for RCU callback while removing cgroup (BZ#2000973) 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. 5. Package List: Red Hat Enterprise Linux Client (v. 7): Source: kernel-3.10.0-1160.45.1.el7.src.rpm noarch: kernel-abi-whitelists-3.10.0-1160.45.1.el7.noarch.rpm kernel-doc-3.10.0-1160.45.1.el7.noarch.rpm x86_64: bpftool-3.10.0-1160.45.1.el7.x86_64.rpm bpftool-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm kernel-3.10.0-1160.45.1.el7.x86_64.rpm kernel-debug-3.10.0-1160.45.1.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm kernel-debug-devel-3.10.0-1160.45.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-1160.45.1.el7.x86_64.rpm kernel-devel-3.10.0-1160.45.1.el7.x86_64.rpm kernel-headers-3.10.0-1160.45.1.el7.x86_64.rpm kernel-tools-3.10.0-1160.45.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm kernel-tools-libs-3.10.0-1160.45.1.el7.x86_64.rpm perf-3.10.0-1160.45.1.el7.x86_64.rpm perf-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm python-perf-3.10.0-1160.45.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm Red Hat Enterprise Linux Client Optional (v. 7): x86_64: bpftool-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-1160.45.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm kernel-tools-libs-devel-3.10.0-1160.45.1.el7.x86_64.rpm perf-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm Red Hat Enterprise Linux ComputeNode (v. 7): Source: kernel-3.10.0-1160.45.1.el7.src.rpm noarch: kernel-abi-whitelists-3.10.0-1160.45.1.el7.noarch.rpm kernel-doc-3.10.0-1160.45.1.el7.noarch.rpm x86_64: bpftool-3.10.0-1160.45.1.el7.x86_64.rpm bpftool-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm kernel-3.10.0-1160.45.1.el7.x86_64.rpm kernel-debug-3.10.0-1160.45.1.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm kernel-debug-devel-3.10.0-1160.45.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-1160.45.1.el7.x86_64.rpm kernel-devel-3.10.0-1160.45.1.el7.x86_64.rpm kernel-headers-3.10.0-1160.45.1.el7.x86_64.rpm kernel-tools-3.10.0-1160.45.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm kernel-tools-libs-3.10.0-1160.45.1.el7.x86_64.rpm perf-3.10.0-1160.45.1.el7.x86_64.rpm perf-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm python-perf-3.10.0-1160.45.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm Red Hat Enterprise Linux ComputeNode Optional (v. 7): x86_64: bpftool-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-1160.45.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm kernel-tools-libs-devel-3.10.0-1160.45.1.el7.x86_64.rpm perf-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm Red Hat Enterprise Linux Server (v. 7): Source: kernel-3.10.0-1160.45.1.el7.src.rpm noarch: kernel-abi-whitelists-3.10.0-1160.45.1.el7.noarch.rpm kernel-doc-3.10.0-1160.45.1.el7.noarch.rpm ppc64: bpftool-3.10.0-1160.45.1.el7.ppc64.rpm bpftool-debuginfo-3.10.0-1160.45.1.el7.ppc64.rpm kernel-3.10.0-1160.45.1.el7.ppc64.rpm kernel-bootwrapper-3.10.0-1160.45.1.el7.ppc64.rpm kernel-debug-3.10.0-1160.45.1.el7.ppc64.rpm kernel-debug-debuginfo-3.10.0-1160.45.1.el7.ppc64.rpm kernel-debug-devel-3.10.0-1160.45.1.el7.ppc64.rpm kernel-debuginfo-3.10.0-1160.45.1.el7.ppc64.rpm kernel-debuginfo-common-ppc64-3.10.0-1160.45.1.el7.ppc64.rpm kernel-devel-3.10.0-1160.45.1.el7.ppc64.rpm kernel-headers-3.10.0-1160.45.1.el7.ppc64.rpm kernel-tools-3.10.0-1160.45.1.el7.ppc64.rpm kernel-tools-debuginfo-3.10.0-1160.45.1.el7.ppc64.rpm kernel-tools-libs-3.10.0-1160.45.1.el7.ppc64.rpm perf-3.10.0-1160.45.1.el7.ppc64.rpm perf-debuginfo-3.10.0-1160.45.1.el7.ppc64.rpm python-perf-3.10.0-1160.45.1.el7.ppc64.rpm python-perf-debuginfo-3.10.0-1160.45.1.el7.ppc64.rpm ppc64le: bpftool-3.10.0-1160.45.1.el7.ppc64le.rpm bpftool-debuginfo-3.10.0-1160.45.1.el7.ppc64le.rpm kernel-3.10.0-1160.45.1.el7.ppc64le.rpm kernel-bootwrapper-3.10.0-1160.45.1.el7.ppc64le.rpm kernel-debug-3.10.0-1160.45.1.el7.ppc64le.rpm kernel-debug-debuginfo-3.10.0-1160.45.1.el7.ppc64le.rpm kernel-debuginfo-3.10.0-1160.45.1.el7.ppc64le.rpm kernel-debuginfo-common-ppc64le-3.10.0-1160.45.1.el7.ppc64le.rpm kernel-devel-3.10.0-1160.45.1.el7.ppc64le.rpm kernel-headers-3.10.0-1160.45.1.el7.ppc64le.rpm kernel-tools-3.10.0-1160.45.1.el7.ppc64le.rpm kernel-tools-debuginfo-3.10.0-1160.45.1.el7.ppc64le.rpm kernel-tools-libs-3.10.0-1160.45.1.el7.ppc64le.rpm perf-3.10.0-1160.45.1.el7.ppc64le.rpm perf-debuginfo-3.10.0-1160.45.1.el7.ppc64le.rpm python-perf-3.10.0-1160.45.1.el7.ppc64le.rpm python-perf-debuginfo-3.10.0-1160.45.1.el7.ppc64le.rpm s390x: bpftool-3.10.0-1160.45.1.el7.s390x.rpm bpftool-debuginfo-3.10.0-1160.45.1.el7.s390x.rpm kernel-3.10.0-1160.45.1.el7.s390x.rpm kernel-debug-3.10.0-1160.45.1.el7.s390x.rpm kernel-debug-debuginfo-3.10.0-1160.45.1.el7.s390x.rpm kernel-debug-devel-3.10.0-1160.45.1.el7.s390x.rpm kernel-debuginfo-3.10.0-1160.45.1.el7.s390x.rpm kernel-debuginfo-common-s390x-3.10.0-1160.45.1.el7.s390x.rpm kernel-devel-3.10.0-1160.45.1.el7.s390x.rpm kernel-headers-3.10.0-1160.45.1.el7.s390x.rpm kernel-kdump-3.10.0-1160.45.1.el7.s390x.rpm kernel-kdump-debuginfo-3.10.0-1160.45.1.el7.s390x.rpm kernel-kdump-devel-3.10.0-1160.45.1.el7.s390x.rpm perf-3.10.0-1160.45.1.el7.s390x.rpm perf-debuginfo-3.10.0-1160.45.1.el7.s390x.rpm python-perf-3.10.0-1160.45.1.el7.s390x.rpm python-perf-debuginfo-3.10.0-1160.45.1.el7.s390x.rpm x86_64: bpftool-3.10.0-1160.45.1.el7.x86_64.rpm bpftool-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm kernel-3.10.0-1160.45.1.el7.x86_64.rpm kernel-debug-3.10.0-1160.45.1.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm kernel-debug-devel-3.10.0-1160.45.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-1160.45.1.el7.x86_64.rpm kernel-devel-3.10.0-1160.45.1.el7.x86_64.rpm kernel-headers-3.10.0-1160.45.1.el7.x86_64.rpm kernel-tools-3.10.0-1160.45.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm kernel-tools-libs-3.10.0-1160.45.1.el7.x86_64.rpm perf-3.10.0-1160.45.1.el7.x86_64.rpm perf-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm python-perf-3.10.0-1160.45.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm Red Hat Enterprise Linux Server Optional (v. 7): ppc64: bpftool-debuginfo-3.10.0-1160.45.1.el7.ppc64.rpm kernel-debug-debuginfo-3.10.0-1160.45.1.el7.ppc64.rpm kernel-debuginfo-3.10.0-1160.45.1.el7.ppc64.rpm kernel-debuginfo-common-ppc64-3.10.0-1160.45.1.el7.ppc64.rpm kernel-tools-debuginfo-3.10.0-1160.45.1.el7.ppc64.rpm kernel-tools-libs-devel-3.10.0-1160.45.1.el7.ppc64.rpm perf-debuginfo-3.10.0-1160.45.1.el7.ppc64.rpm python-perf-debuginfo-3.10.0-1160.45.1.el7.ppc64.rpm ppc64le: bpftool-debuginfo-3.10.0-1160.45.1.el7.ppc64le.rpm kernel-debug-debuginfo-3.10.0-1160.45.1.el7.ppc64le.rpm kernel-debug-devel-3.10.0-1160.45.1.el7.ppc64le.rpm kernel-debuginfo-3.10.0-1160.45.1.el7.ppc64le.rpm kernel-debuginfo-common-ppc64le-3.10.0-1160.45.1.el7.ppc64le.rpm kernel-tools-debuginfo-3.10.0-1160.45.1.el7.ppc64le.rpm kernel-tools-libs-devel-3.10.0-1160.45.1.el7.ppc64le.rpm perf-debuginfo-3.10.0-1160.45.1.el7.ppc64le.rpm python-perf-debuginfo-3.10.0-1160.45.1.el7.ppc64le.rpm x86_64: bpftool-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-1160.45.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm kernel-tools-libs-devel-3.10.0-1160.45.1.el7.x86_64.rpm perf-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm Red Hat Enterprise Linux Workstation (v. 7): Source: kernel-3.10.0-1160.45.1.el7.src.rpm noarch: kernel-abi-whitelists-3.10.0-1160.45.1.el7.noarch.rpm kernel-doc-3.10.0-1160.45.1.el7.noarch.rpm x86_64: bpftool-3.10.0-1160.45.1.el7.x86_64.rpm bpftool-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm kernel-3.10.0-1160.45.1.el7.x86_64.rpm kernel-debug-3.10.0-1160.45.1.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm kernel-debug-devel-3.10.0-1160.45.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-1160.45.1.el7.x86_64.rpm kernel-devel-3.10.0-1160.45.1.el7.x86_64.rpm kernel-headers-3.10.0-1160.45.1.el7.x86_64.rpm kernel-tools-3.10.0-1160.45.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm kernel-tools-libs-3.10.0-1160.45.1.el7.x86_64.rpm perf-3.10.0-1160.45.1.el7.x86_64.rpm perf-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm python-perf-3.10.0-1160.45.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 7): x86_64: bpftool-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-1160.45.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm kernel-tools-libs-devel-3.10.0-1160.45.1.el7.x86_64.rpm perf-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-1160.45.1.el7.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2021-3653 https://access.redhat.com/security/cve/CVE-2021-3656 https://access.redhat.com/security/cve/CVE-2021-22543 https://access.redhat.com/security/cve/CVE-2021-37576 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is <secalert@redhat.com>. More contact details at https://access.redhat.com/security/team/contact/ Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBYWWqidzjgjWX9erEAQj5JA/+JDZu/xue2Mu3vd1Wr2SQNgVoy/tCYPKo z+zlQw1Eld1YcKgBrfF1b83yei3rp5foRyXsxl0wkcCvao3u8b/nTzX3ya3PxE6O yYV9VP4Nx8mmYsU6bw1yPAW7YLG4wS56Ff4kvZ+0EYKa14c6sZZ2qme98wBmfXm7 8/fvt+QlOVFSwcgqs9ME9vE/Ai/InXSnt5RDBNh9mxN8g44YqnsRwsUXrHAvCD7G RMMym2NJMYCHYs6rBBisK7LDD/pvS2xMZXAR57qy4sQhR0VyJpnLYd/FkrZjNdnr XpHLjrBHknunhoSmwf1fF4NYHfB0qQKUTi9drDUZLNKyI2vMrBYDQdSVVI78Kihh OBa0JdAYMeafduUQvHmTQihzYR/nGXykl0Eah4IpLlVXn6uQmjfsygqXZK3kLEv8 K4FOSiT7TKVq1gICE3D0c1UMAiRSAK25NjxLCKHpfKwKDWJV4kuHuVwa9Rx9TDVp P7mCmo6mVjqccRghcksV0L+y1rDdR4L+tBrJc1JfCHzaZtH7SV7jDNlW7FiPgnw4 5kDnWJk6IFgNUedydi2ODr/VPXIY+LCLWFTDY7RuQnNzgzGAn8bSfiVj7ddVKjxm d/EuZhWJxdkfd6V37Qa44wbv+EskoRbHdvZm6C+pjDBIe5ficos5TDkubKsEZxk5 dWp5Jpx6Lbw= =IUMH -----END PGP SIGNATURE----- -- RHSA-announce mailing list RHSA-announce@redhat.com https://listman.redhat.com/mailman/listinfo/rhsa-announce . Bug Fix(es): * Urgent: Missing dptf_power.ko module in RHEL8 (BZ#1968381) * [mlx5] kdump over NFS fails: mlx5 driver gives error "Stop room 95 is bigger than the SQ size 64" (BZ#1969909) * BUG: unable to handle kernel NULL pointer dereference at 0000000000000000 in bluetooth hci_error_reset on intel-tigerlake-h01 (BZ#1972564) * Update CIFS to kernel 5.10 (BZ#1973637) * Backport "tick/nohz: Conditionally restart tick on idle exit" to RHEL 8.5 (BZ#1978710) * Significant performance drop starting on kernel-4.18.0-277 visible on mmap benchmark (BZ#1980314) * Inaccessible NFS server overloads clients (native_queued_spin_lock_slowpath connotation?) (BZ#1980613) * [RHEL8.4 BUG],RialtoMLK, I915 graphic driver failed to boot with one new 120HZ panel (BZ#1981250) * act_ct: subject to DNAT tuple collision (BZ#1982494) Enhancement(s): * [Lenovo 8.5 FEAT] drivers/nvme - Update to the latest upstream (BZ#1965415) 4. Description: OpenShift Virtualization is Red Hat's virtualization solution designed for Red Hat OpenShift Container Platform. This advisory contains the following OpenShift Virtualization 4.8.2 images: RHEL-8-CNV-4.8 ============== kubevirt-vmware-container-v4.8.2-1 node-maintenance-operator-container-v4.8.2-1 bridge-marker-container-v4.8.2-1 kubemacpool-container-v4.8.2-1 virtio-win-container-v4.8.2-1 kubevirt-v2v-conversion-container-v4.8.2-1 hostpath-provisioner-container-v4.8.2-1 kubernetes-nmstate-handler-container-v4.8.2-1 cluster-network-addons-operator-container-v4.8.2-1 cnv-containernetworking-plugins-container-v4.8.2-1 hyperconverged-cluster-operator-container-v4.8.2-2 hostpath-provisioner-operator-container-v4.8.2-1 ovs-cni-marker-container-v4.8.2-1 hyperconverged-cluster-webhook-container-v4.8.2-2 ovs-cni-plugin-container-v4.8.2-1 kubevirt-template-validator-container-v4.8.2-2 kubevirt-ssp-operator-container-v4.8.2-2 cnv-must-gather-container-v4.8.2-3 vm-import-virtv2v-container-v4.8.2-4 vm-import-operator-container-v4.8.2-4 vm-import-controller-container-v4.8.2-4 virt-cdi-cloner-container-v4.8.2-2 virt-cdi-controller-container-v4.8.2-2 virt-cdi-operator-container-v4.8.2-2 virt-cdi-uploadproxy-container-v4.8.2-2 virt-cdi-uploadserver-container-v4.8.2-2 virt-cdi-apiserver-container-v4.8.2-2 virt-cdi-importer-container-v4.8.2-2 virt-launcher-container-v4.8.2-5 virt-api-container-v4.8.2-5 virt-handler-container-v4.8.2-5 virt-controller-container-v4.8.2-5 virt-operator-container-v4.8.2-5 hco-bundle-registry-container-v4.8.2-17 Security Fix(es): * golang: net: lookup functions may return invalid host names (CVE-2021-33195) * golang: net/http/httputil: ReverseProxy forwards connection headers if first one is empty (CVE-2021-33197) * golang: math/big.Rat: may cause a panic or an unrecoverable fatal error if passed inputs with very large exponents (CVE-2021-33198) * golang: crypto/tls: certificate of wrong type is causing TLS client to panic (CVE-2021-34558) 3. Bugs fixed (https://bugzilla.redhat.com/): 1953485 - [CNV-2.5] Manifests in openshift-cnv missing resource requirements - SSP 1957791 - [MTV][Warm] The migrated VM on target side should be powered off/on accordingly to the source VM's last power state during warm migration 1972819 - Failed, Pending and Scheduling VMs can not be stopped 1982143 - [RFE] volumeSnapshotStatuses reason does not check for volume type that do not support snapshots 1983596 - CVE-2021-34558 golang: crypto/tls: certificate of wrong type is causing TLS client to panic 1989564 - CVE-2021-33195 golang: net: lookup functions may return invalid host names 1989570 - CVE-2021-33197 golang: net/http/httputil: ReverseProxy forwards connection headers if first one is empty 1989575 - CVE-2021-33198 golang: math/big.Rat: may cause a panic or an unrecoverable fatal error if passed inputs with very large exponents 1990065 - [4.8.2][network] CNV Daemonsets have maxUnavailable set to 1 which leads to very slow upgrades on large clusters 1991460 - Cannot get 'write' permission without 'resize': Image size is not a multiple of request alignment' 1993122 - Rhel9 templates - provider-url should be updated to https://www.redhat.com/ 1995050 - RHEL9 template - support level and description should be updated 1996110 - cdi importer fails for a CirrOS VM import to NFS (but not to Cepf-rbd/block) 1996660 - [4.8] Goroutine count and memory remains high after VMIs are removed 1997668 - [v2v] VM import from RHV should not be blocked for a non UTC Timezone. 1998818 - virt-handler Pod is missing xorrisofs command 1998983 - 4.8.2 containers 2000021 - [VMIO][RHV VM Import] 63 long char VM Name with more than 1 Disk results in DataVolumeCreationFailed 2001038 - Importer attempts to shrink an image in certain situations 2001069 - [4.8.z] Automatic size detection may not request a PVC that is large enough for an import 5. 8.2) - aarch64, noarch, ppc64le, s390x, x86_64 3. Bug Fix(es): * [Regression] RHEL8.2 - ISST-LTE:pVM:diapvmlp83:sum:memory DLPAR fails to add memory on multiple trials[mm/memory_hotplug.c:1163] (mm-) (BZ#1930169) * Every server is displaying the same power levels for all of our i40e 25G interfaces. 10G interfaces seem to be correct. Ethtool version is 5.0 (BZ#1967100) * s390/uv: Fix handling of length extensions (BZ#1975657) * RHEL 8.3 using FCOE via a FastLinQ QL45000 card will not manually scan in LUN from Target_id's over 8 (BZ#1976265) * Backport "tick/nohz: Conditionally restart tick on idle exit" to RHEL 8.5 (BZ#1978711) * rhel8.3: phase 2 netfilter backports from upstream (BZ#1980323) * xfrm: backports from upstream (BZ#1981841) Enhancement(s): * [8.2.z] Incorrect parsing of ACPI HMAT table reports incorrect kernel WARNING taint (BZ#1943702) * Only selected patches from [IBM 8.4 FEAT] ibmvnic: Backport FW950 and assorted bug fixes (BZ#1980795) 4. 7.7) - noarch, x86_64 3. Bug Fix(es): * A race between i40e_ndo_set_vf_mac() and i40e_vsi_clear() in the i40e driver causes a use after free condition of the kmalloc-4096 slab cache. (BZ#1980333) 4

Trust: 1.8

sources: NVD: CVE-2021-22543 // VULHUB: VHN-380980 // VULMON: CVE-2021-22543 // PACKETSTORM: 164477 // PACKETSTORM: 164484 // PACKETSTORM: 164487 // PACKETSTORM: 163768 // PACKETSTORM: 164223 // PACKETSTORM: 163995 // PACKETSTORM: 164666 // PACKETSTORM: 164652

AFFECTED PRODUCTS

vendor:netappmodel:h300sscope:eqversion: -

Trust: 1.0

vendor:netappmodel:h410sscope:eqversion: -

Trust: 1.0

vendor:fedoraprojectmodel:fedorascope:eqversion:34

Trust: 1.0

vendor:netappmodel:solidfire baseboard management controllerscope:eqversion: -

Trust: 1.0

vendor:netappmodel:h410cscope:eqversion: -

Trust: 1.0

vendor:netappmodel:h500escope:eqversion: -

Trust: 1.0

vendor:debianmodel:linuxscope:eqversion:9.0

Trust: 1.0

vendor:netappmodel:h700sscope:eqversion: -

Trust: 1.0

vendor:linuxmodel:kernelscope:eqversion:2021-05-18

Trust: 1.0

vendor:netappmodel:h300escope:eqversion: -

Trust: 1.0

vendor:fedoraprojectmodel:fedorascope:eqversion:33

Trust: 1.0

vendor:netappmodel:cloud backupscope:eqversion: -

Trust: 1.0

vendor:netappmodel:h700escope:eqversion: -

Trust: 1.0

vendor:netappmodel:h500sscope:eqversion: -

Trust: 1.0

sources: NVD: CVE-2021-22543

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2021-22543
value: HIGH

Trust: 1.0

CNNVD: CNNVD-202105-1684
value: HIGH

Trust: 0.6

VULHUB: VHN-380980
value: MEDIUM

Trust: 0.1

VULMON: CVE-2021-22543
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2021-22543
severity: MEDIUM
baseScore: 4.6
vectorString: AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 3.9
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.1

VULHUB: VHN-380980
severity: MEDIUM
baseScore: 4.6
vectorString: AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 3.9
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2021-22543
baseSeverity: HIGH
baseScore: 7.8
vectorString: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 1.8
impactScore: 5.9
version: 3.1

Trust: 1.0

sources: VULHUB: VHN-380980 // VULMON: CVE-2021-22543 // CNNVD: CNNVD-202105-1684 // NVD: CVE-2021-22543

PROBLEMTYPE DATA

problemtype:CWE-119

Trust: 1.1

sources: VULHUB: VHN-380980 // NVD: CVE-2021-22543

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-202105-1684

TYPE

buffer error

Trust: 0.6

sources: CNNVD: CNNVD-202105-1684

PATCH

title:Red Hat: Important: kernel security updateurl:https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20225640 - Security Advisory

Trust: 0.1

title:Red Hat: CVE-2021-22543url:https://vulmon.com/vendoradvisory?qidtp=red_hat_cve_database&qid=CVE-2021-22543

Trust: 0.1

title:Amazon Linux 2: ALAS2-2021-1699url:https://vulmon.com/vendoradvisory?qidtp=amazon_linux2&qid=ALAS2-2021-1699

Trust: 0.1

title:Arch Linux Issues: url:https://vulmon.com/vendoradvisory?qidtp=arch_linux_issues&qid=CVE-2021-22543 log

Trust: 0.1

title:Amazon Linux AMI: ALAS-2021-1539url:https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami&qid=ALAS-2021-1539

Trust: 0.1

title:Amazon Linux 2: ALAS2KERNEL-5.4-2022-004url:https://vulmon.com/vendoradvisory?qidtp=amazon_linux2&qid=ALAS2KERNEL-5.4-2022-004

Trust: 0.1

title:Amazon Linux 2: ALAS2KERNEL-5.10-2022-002url:https://vulmon.com/vendoradvisory?qidtp=amazon_linux2&qid=ALAS2KERNEL-5.10-2022-002

Trust: 0.1

title:CVE-2021-22543url:https://github.com/JamesGeeee/CVE-2021-22543

Trust: 0.1

sources: VULMON: CVE-2021-22543

EXTERNAL IDS

db:NVDid:CVE-2021-22543

Trust: 2.6

db:OPENWALLid:OSS-SECURITY/2021/06/26/1

Trust: 1.8

db:PACKETSTORMid:164666

Trust: 0.8

db:PACKETSTORMid:164589

Trust: 0.7

db:PACKETSTORMid:167858

Trust: 0.7

db:PACKETSTORMid:164583

Trust: 0.7

db:PACKETSTORMid:164477

Trust: 0.7

db:PACKETSTORMid:164484

Trust: 0.7

db:PACKETSTORMid:164223

Trust: 0.7

db:PACKETSTORMid:163995

Trust: 0.7

db:OPENWALLid:OSS-SECURITY/2021/05/26/3

Trust: 0.6

db:OPENWALLid:OSS-SECURITY/2021/05/26/4

Trust: 0.6

db:OPENWALLid:OSS-SECURITY/2021/05/26/5

Trust: 0.6

db:AUSCERTid:ESB-2021.3485

Trust: 0.6

db:AUSCERTid:ESB-2021.3324

Trust: 0.6

db:AUSCERTid:ESB-2021.3034

Trust: 0.6

db:AUSCERTid:ESB-2022.3626

Trust: 0.6

db:AUSCERTid:ESB-2021.2959

Trust: 0.6

db:AUSCERTid:ESB-2021.3372

Trust: 0.6

db:AUSCERTid:ESB-2021.2764

Trust: 0.6

db:AUSCERTid:ESB-2021.3536

Trust: 0.6

db:AUSCERTid:ESB-2021.3173

Trust: 0.6

db:AUSCERTid:ESB-2021.3554

Trust: 0.6

db:AUSCERTid:ESB-2021.4163

Trust: 0.6

db:AUSCERTid:ESB-2021.3249

Trust: 0.6

db:AUSCERTid:ESB-2021.3389

Trust: 0.6

db:AUSCERTid:ESB-2021.3015

Trust: 0.6

db:AUSCERTid:ESB-2021.2899

Trust: 0.6

db:AUSCERTid:ESB-2021.4156

Trust: 0.6

db:AUSCERTid:ESB-2021.2691

Trust: 0.6

db:AUSCERTid:ESB-2021.3137

Trust: 0.6

db:AUSCERTid:ESB-2021.4282

Trust: 0.6

db:AUSCERTid:ESB-2021.3456

Trust: 0.6

db:AUSCERTid:ESB-2021.4089

Trust: 0.6

db:AUSCERTid:ESB-2021.3499

Trust: 0.6

db:AUSCERTid:ESB-2021.2789

Trust: 0.6

db:PACKETSTORMid:164331

Trust: 0.6

db:PACKETSTORMid:163865

Trust: 0.6

db:PACKETSTORMid:164098

Trust: 0.6

db:PACKETSTORMid:164562

Trust: 0.6

db:PACKETSTORMid:164076

Trust: 0.6

db:PACKETSTORMid:164431

Trust: 0.6

db:PACKETSTORMid:164186

Trust: 0.6

db:PACKETSTORMid:164028

Trust: 0.6

db:PACKETSTORMid:164237

Trust: 0.6

db:PACKETSTORMid:163767

Trust: 0.6

db:CS-HELPid:SB2021082206

Trust: 0.6

db:CS-HELPid:SB2021083123

Trust: 0.6

db:CS-HELPid:SB2021111726

Trust: 0.6

db:CS-HELPid:SB2022072069

Trust: 0.6

db:CS-HELPid:SB2021102111

Trust: 0.6

db:CS-HELPid:SB2021090126

Trust: 0.6

db:CS-HELPid:SB2021101336

Trust: 0.6

db:CS-HELPid:SB2022020931

Trust: 0.6

db:CS-HELPid:SB2021100618

Trust: 0.6

db:CNNVDid:CNNVD-202105-1684

Trust: 0.6

db:PACKETSTORMid:164652

Trust: 0.2

db:VULHUBid:VHN-380980

Trust: 0.1

db:VULMONid:CVE-2021-22543

Trust: 0.1

db:PACKETSTORMid:164487

Trust: 0.1

db:PACKETSTORMid:163768

Trust: 0.1

sources: VULHUB: VHN-380980 // VULMON: CVE-2021-22543 // PACKETSTORM: 164477 // PACKETSTORM: 164484 // PACKETSTORM: 164487 // PACKETSTORM: 163768 // PACKETSTORM: 164223 // PACKETSTORM: 163995 // PACKETSTORM: 164666 // PACKETSTORM: 164652 // CNNVD: CNNVD-202105-1684 // NVD: CVE-2021-22543

REFERENCES

url:https://security.netapp.com/advisory/ntap-20210708-0002/

Trust: 1.8

url:https://github.com/google/security-research/security/advisories/ghsa-7wq5-phmq-m584

Trust: 1.8

url:https://lists.debian.org/debian-lts-announce/2021/10/msg00010.html

Trust: 1.8

url:https://lists.debian.org/debian-lts-announce/2021/12/msg00012.html

Trust: 1.8

url:http://www.openwall.com/lists/oss-security/2021/06/26/1

Trust: 1.8

url:https://access.redhat.com/security/cve/cve-2021-22543

Trust: 1.5

url:https://nvd.nist.gov/vuln/detail/cve-2021-22543

Trust: 1.4

url:https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4g5ybuvephzyxmkngbz3s6infcteel4e/

Trust: 1.0

url:https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/roqixqb7zawi3ksgshr6h5rduwzi775s/

Trust: 1.0

url:https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/roqixqb7zawi3ksgshr6h5rduwzi775s/

Trust: 0.8

url:https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4g5ybuvephzyxmkngbz3s6infcteel4e/

Trust: 0.8

url:https://listman.redhat.com/mailman/listinfo/rhsa-announce

Trust: 0.8

url:https://bugzilla.redhat.com/):

Trust: 0.8

url:https://access.redhat.com/security/team/contact/

Trust: 0.8

url:https://access.redhat.com/security/updates/classification/#important

Trust: 0.7

url:https://access.redhat.com/articles/11258

Trust: 0.7

url:https://access.redhat.com/security/team/key/

Trust: 0.7

url:http://www.openwall.com/lists/oss-security/2021/05/26/5

Trust: 0.6

url:http://www.openwall.com/lists/oss-security/2021/05/26/3

Trust: 0.6

url:http://www.openwall.com/lists/oss-security/2021/05/26/4

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2021.2899

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2021.3034

Trust: 0.6

url:https://www.cybersecurity-help.cz/vdb/sb2021090126

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2021.4089

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2021.3554

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2021.4282

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2021.4163

Trust: 0.6

url:https://www.cybersecurity-help.cz/vdb/sb2021083123

Trust: 0.6

url:https://packetstormsecurity.com/files/164431/ubuntu-security-notice-usn-5106-1.html

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2021.2789

Trust: 0.6

url:https://www.cybersecurity-help.cz/vdb/sb2021111726

Trust: 0.6

url:https://packetstormsecurity.com/files/164484/red-hat-security-advisory-2021-3802-01.html

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2021.3485

Trust: 0.6

url:https://packetstormsecurity.com/files/164098/ubuntu-security-notice-usn-5070-1.html

Trust: 0.6

url:https://packetstormsecurity.com/files/164186/ubuntu-security-notice-usn-5071-2.html

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2021.3324

Trust: 0.6

url:https://packetstormsecurity.com/files/164589/ubuntu-security-notice-usn-5120-1.html

Trust: 0.6

url:https://packetstormsecurity.com/files/164562/red-hat-security-advisory-2021-3925-01.html

Trust: 0.6

url:https://packetstormsecurity.com/files/167858/red-hat-security-advisory-2022-5640-01.html

Trust: 0.6

url:https://packetstormsecurity.com/files/164331/ubuntu-security-notice-usn-5094-1.html

Trust: 0.6

url:https://www.cybersecurity-help.cz/vdb/sb2021082206

Trust: 0.6

url:https://www.cybersecurity-help.cz/vdb/sb2022020931

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2021.3249

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2021.2959

Trust: 0.6

url:https://packetstormsecurity.com/files/164666/red-hat-security-advisory-2021-4000-01.html

Trust: 0.6

url:https://packetstormsecurity.com/files/164028/red-hat-security-advisory-2021-3262-01.html

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2021.2764

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2021.3137

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2021.3456

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2021.3015

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2021.3499

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2021.3372

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2021.3173

Trust: 0.6

url:https://packetstormsecurity.com/files/163995/red-hat-security-advisory-2021-3363-01.html

Trust: 0.6

url:https://www.cybersecurity-help.cz/vdb/sb2021101336

Trust: 0.6

url:https://packetstormsecurity.com/files/164223/red-hat-security-advisory-2021-3598-01.html

Trust: 0.6

url:https://www.cybersecurity-help.cz/vdb/sb2022072069

Trust: 0.6

url:https://packetstormsecurity.com/files/163767/red-hat-security-advisory-2021-3044-01.html

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2022.3626

Trust: 0.6

url:https://packetstormsecurity.com/files/164583/red-hat-security-advisory-2021-3949-01.html

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2021.3536

Trust: 0.6

url:https://vigilance.fr/vulnerability/linux-kernel-memory-corruption-via-dev-kvm-35543

Trust: 0.6

url:https://packetstormsecurity.com/files/164076/red-hat-security-advisory-2021-3454-01.html

Trust: 0.6

url:https://packetstormsecurity.com/files/164477/red-hat-security-advisory-2021-3814-01.html

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2021.2691

Trust: 0.6

url:https://packetstormsecurity.com/files/164237/ubuntu-security-notice-usn-5071-3.html

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2021.3389

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2021.4156

Trust: 0.6

url:https://www.cybersecurity-help.cz/vdb/sb2021100618

Trust: 0.6

url:https://www.cybersecurity-help.cz/vdb/sb2021102111

Trust: 0.6

url:https://packetstormsecurity.com/files/163865/red-hat-security-advisory-2021-3173-01.html

Trust: 0.6

url:https://nvd.nist.gov/vuln/detail/cve-2021-37576

Trust: 0.5

url:https://access.redhat.com/security/cve/cve-2021-37576

Trust: 0.5

url:https://nvd.nist.gov/vuln/detail/cve-2021-22555

Trust: 0.4

url:https://access.redhat.com/security/cve/cve-2021-22555

Trust: 0.4

url:https://nvd.nist.gov/vuln/detail/cve-2021-3653

Trust: 0.3

url:https://access.redhat.com/security/cve/cve-2021-3656

Trust: 0.3

url:https://access.redhat.com/security/cve/cve-2021-3653

Trust: 0.3

url:https://nvd.nist.gov/vuln/detail/cve-2021-3656

Trust: 0.3

url:https://access.redhat.com/security/cve/cve-2021-3609

Trust: 0.3

url:https://nvd.nist.gov/vuln/detail/cve-2021-3609

Trust: 0.3

url:https://cwe.mitre.org/data/definitions/119.html

Trust: 0.1

url:https://access.redhat.com/errata/rhsa-2022:5640

Trust: 0.1

url:https://github.com/jamesgeeee/cve-2021-22543

Trust: 0.1

url:https://nvd.nist.gov

Trust: 0.1

url:https://access.redhat.com/errata/rhsa-2021:3814

Trust: 0.1

url:https://access.redhat.com/errata/rhsa-2021:3802

Trust: 0.1

url:https://access.redhat.com/errata/rhsa-2021:3801

Trust: 0.1

url:https://access.redhat.com/errata/rhsa-2021:3057

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2021-33195

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2021-27218

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2021-33197

Trust: 0.1

url:https://www.redhat.com/

Trust: 0.1

url:https://access.redhat.com/security/cve/cve-2021-38201

Trust: 0.1

url:https://access.redhat.com/errata/rhsa-2021:3598

Trust: 0.1

url:https://access.redhat.com/security/cve/cve-2021-33195

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2021-33198

Trust: 0.1

url:https://access.redhat.com/security/cve/cve-2021-33198

Trust: 0.1

url:https://access.redhat.com/security/cve/cve-2021-34558

Trust: 0.1

url:https://access.redhat.com/security/cve/cve-2021-27218

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2021-38575

Trust: 0.1

url:https://docs.openshift.com/container-platform/4.8/virt/upgrading-virt.html

Trust: 0.1

url:https://access.redhat.com/security/cve/cve-2021-38575

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2021-38201

Trust: 0.1

url:https://access.redhat.com/security/cve/cve-2021-33197

Trust: 0.1

url:https://access.redhat.com/security/updates/classification/#moderate

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2021-34558

Trust: 0.1

url:https://access.redhat.com/security/cve/cve-2021-32399

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2021-32399

Trust: 0.1

url:https://access.redhat.com/errata/rhsa-2021:3363

Trust: 0.1

url:https://access.redhat.com/errata/rhsa-2021:4000

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2019-20934

Trust: 0.1

url:https://access.redhat.com/security/cve/cve-2020-36385

Trust: 0.1

url:https://access.redhat.com/errata/rhsa-2021:3987

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2020-36385

Trust: 0.1

url:https://access.redhat.com/security/cve/cve-2019-20934

Trust: 0.1

sources: VULHUB: VHN-380980 // VULMON: CVE-2021-22543 // PACKETSTORM: 164477 // PACKETSTORM: 164484 // PACKETSTORM: 164487 // PACKETSTORM: 163768 // PACKETSTORM: 164223 // PACKETSTORM: 163995 // PACKETSTORM: 164666 // PACKETSTORM: 164652 // CNNVD: CNNVD-202105-1684 // NVD: CVE-2021-22543

CREDITS

Red Hat

Trust: 0.8

sources: PACKETSTORM: 164477 // PACKETSTORM: 164484 // PACKETSTORM: 164487 // PACKETSTORM: 163768 // PACKETSTORM: 164223 // PACKETSTORM: 163995 // PACKETSTORM: 164666 // PACKETSTORM: 164652

SOURCES

db:VULHUBid:VHN-380980
db:VULMONid:CVE-2021-22543
db:PACKETSTORMid:164477
db:PACKETSTORMid:164484
db:PACKETSTORMid:164487
db:PACKETSTORMid:163768
db:PACKETSTORMid:164223
db:PACKETSTORMid:163995
db:PACKETSTORMid:164666
db:PACKETSTORMid:164652
db:CNNVDid:CNNVD-202105-1684
db:NVDid:CVE-2021-22543

LAST UPDATE DATE

2024-12-21T19:26:33.834000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-380980date:2022-04-01T00:00:00
db:VULMONid:CVE-2021-22543date:2022-04-01T00:00:00
db:CNNVDid:CNNVD-202105-1684date:2022-07-28T00:00:00
db:NVDid:CVE-2021-22543date:2024-05-29T20:15:09.870

SOURCES RELEASE DATE

db:VULHUBid:VHN-380980date:2021-05-26T00:00:00
db:VULMONid:CVE-2021-22543date:2021-05-26T00:00:00
db:PACKETSTORMid:164477date:2021-10-12T15:34:36
db:PACKETSTORMid:164484date:2021-10-13T14:43:04
db:PACKETSTORMid:164487date:2021-10-13T14:46:02
db:PACKETSTORMid:163768date:2021-08-10T14:48:02
db:PACKETSTORMid:164223date:2021-09-21T15:42:50
db:PACKETSTORMid:163995date:2021-08-31T16:27:27
db:PACKETSTORMid:164666date:2021-10-26T19:34:32
db:PACKETSTORMid:164652date:2021-10-26T15:31:16
db:CNNVDid:CNNVD-202105-1684date:2021-05-26T00:00:00
db:NVDid:CVE-2021-22543date:2021-05-26T11:15:08.623