CVE-2021-33655

Name
CVE-2021-33655
Description
When sending malicous data to kernel by ioctl cmd FBIOPUT_VSCREENINFO,kernel will write memory out of bounds.
NVD Severity
medium
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
MISC https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=086ff84617185393a0bbf25830c4f36412a7d3f4
MLIST http://www.openwall.com/lists/oss-security/2022/07/19/2

Match rules

CPE URI Source package Min version Max version
cpe:2.3:o:linux:linux_kernel:5.19:rc1:*:*:*:*:*:* linux_kernel == None == 5.19
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* linux_kernel >= 5.18 < 5.19

Vulnerable and fixed packages

Source package Branch Version Maintainer Status