CVE-2021-32078

Name
CVE-2021-32078
Description
An Out-of-Bounds Read was discovered in arch/arm/mach-footbridge/personal-pci.c in the Linux kernel through 5.12.11 because of the lack of a check for a value that shouldn't be negative, e.g., access to element -2 of an array, aka CID-298a58e165e4.
NVD Severity
medium
Other trackers
Mailing lists
Exploits
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
CONFIRM https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=298a58e165e447ccfaae35fe9f651f9d7e15166f
CONFIRM https://github.com/torvalds/linux/commit/298a58e165e447ccfaae35fe9f651f9d7e15166f
MISC https://kirtikumarar.com/CVE-2021-32078.txt
Third Party Advisory https://security.netapp.com/advisory/ntap-20210813-0002/

Match rules

CPE URI Source package Min version Max version
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* linux_kernel >= None <= 5.12.11

Vulnerable and fixed packages

Source package Branch Version Maintainer Status