CVE-2021-28972
Description
In drivers/pci/hotplug/rpadlpar_sysfs.c in the Linux kernel through 5.11.8, the RPA PCI Hotplug driver has a user-tolerable buffer overflow when writing a new device name to the driver from userspace, allowing userspace to write data to the kernel stack frame directly. This occurs because add_slot_store and remove_slot_store mishandle drc_name termination, aka CID-cc7a0bb058b8.
Risk Information
Base Score
6.7
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.055
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| SUSE-SU-2021:1175-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-4.12.14-16.50.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1175-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-base-4.12.14-16.50.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1175-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-base-debuginfo-4.12.14-16.50.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1175-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-debuginfo-4.12.14-16.50.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1175-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-debugsource-4.12.14-16.50.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1175-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-devel-4.12.14-16.50.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1175-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-devel-azure-4.12.14-16.50.1.noarch.rpm | Linux |
| SUSE-SU-2021:1175-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-source-azure-4.12.14-16.50.1.noarch.rpm | Linux |
| SUSE-SU-2021:1175-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-syms-azure-4.12.14-16.50.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1210-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-4.12.14-122.66.2.x86_64.rpm | Linux |
| SUSE-SU-2021:1210-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-base-4.12.14-122.66.2.x86_64.rpm | Linux |
| SUSE-SU-2021:1210-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-base-debuginfo-4.12.14-122.66.2.x86_64.rpm | Linux |
| SUSE-SU-2021:1210-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-debuginfo-4.12.14-122.66.2.x86_64.rpm | Linux |
| SUSE-SU-2021:1210-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-debugsource-4.12.14-122.66.2.x86_64.rpm | Linux |
| SUSE-SU-2021:1210-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-devel-4.12.14-122.66.2.x86_64.rpm | Linux |
| SUSE-SU-2021:1210-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-devel-debuginfo-4.12.14-122.66.2.x86_64.rpm | Linux |
| SUSE-SU-2021:1210-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-devel-4.12.14-122.66.2.noarch.rpm | Linux |
| SUSE-SU-2021:1210-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-macros-4.12.14-122.66.2.noarch.rpm | Linux |
| SUSE-SU-2021:1210-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-source-4.12.14-122.66.2.noarch.rpm | Linux |
| SUSE-SU-2021:1210-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-syms-4.12.14-122.66.2.x86_64.rpm | Linux |
| SUSE-SU-2021:14724-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-default-extra-3.0.101-108.126.1.i586.rpm | Linux |
| SUSE-SU-2021:14724-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-default-extra-3.0.101-108.126.1.x86_64.rpm | Linux |
| SUSE-SU-2021:14724-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-pae-extra-3.0.101-108.126.1.i586.rpm | Linux |
| SUSE-SU-2021:14724-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-trace-extra-3.0.101-108.126.1.x86_64.rpm | Linux |
| SUSE-SU-2021:14724-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-xen-extra-3.0.101-108.126.1.i586.rpm | Linux |
| SUSE-SU-2021:14724-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-xen-extra-3.0.101-108.126.1.x86_64.rpm | Linux |
| Linux kernel for OEM systems (USN-4948-1) linux-image-oem-20.04b_5.10.0.1026.27_amd64.deb | Linux |
| Linux kernel for OEM systems (USN-4948-1) linux-image-5.10.0-1026-oem_5.10.0-1026.27_amd64.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-kvm_4.15.0.1092.88_amd64.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-generic_4.15.0.144.131_i386.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-generic_4.15.0.144.131_amd64.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-virtual_4.15.0.144.131_i386.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-virtual_4.15.0.144.131_amd64.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-lowlatency_4.15.0.144.131_i386.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-lowlatency_4.15.0.144.131_amd64.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-aws-lts-18.04_4.15.0.1103.106_amd64.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-gcp-lts-18.04_4.15.0.1100.118_amd64.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-4.15.0-1092-kvm_4.15.0-1092.94_amd64.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-4.15.0-1100-gcp_4.15.0-1100.113_amd64.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-4.15.0-1103-aws_4.15.0-1103.110_amd64.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-azure-lts-18.04_4.15.0.1115.88_amd64.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-oracle-lts-18.04_4.15.0.1072.82_amd64.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-4.15.0-1115-azure_4.15.0-1115.128_amd64.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-4.15.0-1072-oracle_4.15.0-1072.80_amd64.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-4.15.0-144-generic_4.15.0-144.148_i386.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-4.15.0-144-generic_4.15.0-144.148_amd64.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-4.15.0-144-lowlatency_4.15.0-144.148_i386.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-4.15.0-144-lowlatency_4.15.0-144.148_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-aws_5.4.0.1049.31_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-aws_5.4.0.1049.50_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-gcp_5.4.0.1044.31_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-gcp_5.4.0.1044.53_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-gke_5.4.0.1044.53_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-kvm_5.4.0.1040.38_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-oem_5.4.0.74.77_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-oem_5.4.0.74.83~18.04.67_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-azure_5.4.0.1048.27_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-azure_5.4.0.1048.46_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-gkeop_5.4.0.1016.19_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-oracle_5.4.0.1046.45_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-oracle_5.4.0.1046.50~18.04.28_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-generic_5.4.0.74.77_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-gke-5.4_5.4.0.1044.53_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-gke-5.4_5.4.0.1044.46~18.04.10_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-virtual_5.4.0.74.77_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-oem-osp1_5.4.0.74.77_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-oem-osp1_5.4.0.74.83~18.04.67_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-gkeop-5.4_5.4.0.1016.19_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-gkeop-5.4_5.4.0.1016.17~18.04.17_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-lowlatency_5.4.0.74.77_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-5.4.0-1040-kvm_5.4.0-1040.41_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-5.4.0-1044-gcp_5.4.0-1044.47_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-5.4.0-1044-gcp_5.4.0-1044.47~18.04.2_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-5.4.0-1044-gke_5.4.0-1044.46_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-5.4.0-1044-gke_5.4.0-1044.46~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-5.4.0-1049-aws_5.4.0-1049.51_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-5.4.0-1049-aws_5.4.0-1049.51~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-5.4.0-1016-gkeop_5.4.0-1016.17_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-5.4.0-1016-gkeop_5.4.0-1016.17~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-5.4.0-1048-azure_5.4.0-1048.50_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-5.4.0-1048-azure_5.4.0-1048.50~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-5.4.0-74-generic_5.4.0-74.83_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-5.4.0-74-generic_5.4.0-74.83~18.04.1_i386.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-5.4.0-74-generic_5.4.0-74.83~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-5.4.0-1046-oracle_5.4.0-1046.50_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-5.4.0-1046-oracle_5.4.0-1046.50~18.04.2_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-generic-hwe-18.04_5.4.0.74.83~18.04.67_i386.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-generic-hwe-18.04_5.4.0.74.83~18.04.67_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-virtual-hwe-18.04_5.4.0.74.77_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-virtual-hwe-18.04_5.4.0.74.83~18.04.67_i386.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-virtual-hwe-18.04_5.4.0.74.83~18.04.67_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-5.4.0-74-lowlatency_5.4.0-74.83_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-5.4.0-74-lowlatency_5.4.0-74.83~18.04.1_i386.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-5.4.0-74-lowlatency_5.4.0-74.83~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-lowlatency-hwe-18.04_5.4.0.74.83~18.04.67_i386.deb | Linux |
| Linux kernel (USN-4982-1) linux-image-lowlatency-hwe-18.04_5.4.0.74.83~18.04.67_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-aws_5.8.0.1035.37_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-gcp_5.8.0.1032.32_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-gke_5.8.0.1032.32_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-kvm_5.8.0.1028.30_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-azure_5.8.0.1033.33_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-oracle_5.8.0.1031.30_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-generic_5.8.0.55.60_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-virtual_5.8.0.55.60_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-lowlatency_5.8.0.55.60_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-5.8.0-1028-kvm_5.8.0-1028.30_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-5.8.0-1032-gcp_5.8.0-1032.34_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-5.8.0-1035-aws_5.8.0-1035.37_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-5.8.0-1033-azure_5.8.0-1033.35_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-5.8.0-55-generic_5.8.0-55.62_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-5.8.0-55-generic_5.8.0-55.62~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-5.8.0-1031-oracle_5.8.0-1031.32_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-generic-hwe-20.04_5.8.0.55.62~20.04.39_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-virtual-hwe-20.04_5.8.0.55.62~20.04.39_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-5.8.0-55-lowlatency_5.8.0-55.62_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-5.8.0-55-lowlatency_5.8.0-55.62~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-lowlatency-hwe-20.04_5.8.0.55.62~20.04.39_amd64.deb | Linux |
| kernel Security Update (ALAS-2021-1627) kernel-livepatch-4.14.231-173.360-1.0-0.amzn2.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234