OESA-2022-1825

See a problem?
Please try reporting it to the source first.

Source

https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2022-1825

Import Source

https://repo.openeuler.org/security/data/osv/OESA-2022-1825.json

JSON Data

https://api.test.osv.dev/v1/vulns/OESA-2022-1825

Upstream

CVE-2021-20269

Published

2022-08-13T11:04:07Z

Modified

2026-03-11T06:22:43.436442Z

Summary

kexec-tools security update

Details

kexec-tools provides /sbin/kexec binary that facilitates a new kernel to boot using the kernel's kexec feature either on a normal or a panic reboot. This package contains the /sbin/kexec binary and ancillary utilities that together form the userspace component of the kernel's kexec feature.

Security Fix(es):

A flaw was found in the permissions of a log file created by kexec-tools. This flaw allows a local unprivileged user to read this file and leak kernel internal information from a previous panic. The highest threat from this vulnerability is to confidentiality. This flaw affects kexec-tools shipped by Fedora versions prior to 2.0.21-8 and RHEL versions prior to 2.0.20-47.(CVE-2021-20269)

Database specific

{
    "severity": "Medium"
}

References

Affected packages

openEuler:20.03-LTS-SP1 / kexec-tools

Package

Name: kexec-tools
Purl: pkg:rpm/openEuler/kexec-tools&distro=openEuler-20.03-LTS-SP1

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.0.20-16.oe1

Ecosystem specific

{
    "x86_64": [
        "kexec-tools-debugsource-2.0.20-16.oe1.x86_64.rpm",
        "kexec-tools-debuginfo-2.0.20-16.oe1.x86_64.rpm",
        "kexec-tools-2.0.20-16.oe1.x86_64.rpm"
    ],
    "src": [
        "kexec-tools-2.0.20-16.oe1.src.rpm"
    ],
    "noarch": [
        "kexec-tools-help-2.0.20-16.oe1.noarch.rpm"
    ],
    "aarch64": [
        "kexec-tools-debuginfo-2.0.20-16.oe1.aarch64.rpm",
        "kexec-tools-debugsource-2.0.20-16.oe1.aarch64.rpm",
        "kexec-tools-2.0.20-16.oe1.aarch64.rpm"
    ]
}

Database specific

source

"https://repo.openeuler.org/security/data/osv/OESA-2022-1825.json"

openEuler:20.03-LTS-SP3 / kexec-tools

Package

Name: kexec-tools
Purl: pkg:rpm/openEuler/kexec-tools&distro=openEuler-20.03-LTS-SP3

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.0.20-18.oe1

Ecosystem specific

{
    "x86_64": [
        "kexec-tools-debuginfo-2.0.20-18.oe1.x86_64.rpm",
        "kexec-tools-debugsource-2.0.20-18.oe1.x86_64.rpm",
        "kexec-tools-2.0.20-18.oe1.x86_64.rpm"
    ],
    "src": [
        "kexec-tools-2.0.20-18.oe1.src.rpm"
    ],
    "noarch": [
        "kexec-tools-help-2.0.20-18.oe1.noarch.rpm"
    ],
    "aarch64": [
        "kexec-tools-debuginfo-2.0.20-18.oe1.aarch64.rpm",
        "kexec-tools-debugsource-2.0.20-18.oe1.aarch64.rpm",
        "kexec-tools-2.0.20-18.oe1.aarch64.rpm"
    ]
}

Database specific

source

"https://repo.openeuler.org/security/data/osv/OESA-2022-1825.json"

openEuler:22.03-LTS / kexec-tools

Package

Name: kexec-tools
Purl: pkg:rpm/openEuler/kexec-tools&distro=openEuler-22.03-LTS

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.0.23-5.oe2203

Ecosystem specific

{
    "x86_64": [
        "kexec-tools-debugsource-2.0.23-5.oe2203.x86_64.rpm",
        "kexec-tools-debuginfo-2.0.23-5.oe2203.x86_64.rpm",
        "kexec-tools-2.0.23-5.oe2203.x86_64.rpm"
    ],
    "src": [
        "kexec-tools-2.0.23-5.oe2203.src.rpm"
    ],
    "noarch": [
        "kexec-tools-help-2.0.23-5.oe2203.noarch.rpm"
    ],
    "aarch64": [
        "kexec-tools-debugsource-2.0.23-5.oe2203.aarch64.rpm",
        "kexec-tools-2.0.23-5.oe2203.aarch64.rpm",
        "kexec-tools-debuginfo-2.0.23-5.oe2203.aarch64.rpm"
    ]
}

Database specific

source

"https://repo.openeuler.org/security/data/osv/OESA-2022-1825.json"