It was discovered that the KVM hypervisor implementation in the Linux kernel did not properly perform reference counting in some situations, leading to a use-after-free vulnerability. An attacker who could start and control a VM could possibly use this to expose sensitive information or execute arbitrary code. (CVE-2021-22543)
Murray McAllister discovered that the joystick device interface in the Linux kernel did not properly validate data passed via an ioctl(). A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code on systems with a joystick device registered. (CVE-2021-3612)
{ "availability": "No subscription required", "binaries": [ { "binary_version": "5.4.0-1043.47~18.04.1", "binary_name": "linux-buildinfo-5.4.0-1043-raspi" }, { "binary_version": "5.4.0-1043.47~18.04.1", "binary_name": "linux-headers-5.4.0-1043-raspi" }, { "binary_version": "5.4.0-1043.47~18.04.1", "binary_name": "linux-image-5.4.0-1043-raspi" }, { "binary_version": "5.4.0-1043.47~18.04.1", "binary_name": "linux-modules-5.4.0-1043-raspi" }, { "binary_version": "5.4.0-1043.47~18.04.1", "binary_name": "linux-raspi-5.4-headers-5.4.0-1043" }, { "binary_version": "5.4.0-1043.47~18.04.1", "binary_name": "linux-raspi-5.4-tools-5.4.0-1043" }, { "binary_version": "5.4.0-1043.47~18.04.1", "binary_name": "linux-tools-5.4.0-1043-raspi" } ] }
{ "ecosystem": "Ubuntu:18.04:LTS", "cves": [ { "severity": [ { "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "type": "CVSS_V3" }, { "score": "medium", "type": "Ubuntu" } ], "id": "CVE-2021-3612" }, { "severity": [ { "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "type": "CVSS_V3" }, { "score": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:H/SI:H/SA:L", "type": "CVSS_V4" }, { "score": "medium", "type": "Ubuntu" } ], "id": "CVE-2021-22543" } ] }
{ "availability": "No subscription required", "binaries": [ { "binary_version": "5.4.0-1043.47", "binary_name": "linux-buildinfo-5.4.0-1043-raspi" }, { "binary_version": "5.4.0-1043.47", "binary_name": "linux-headers-5.4.0-1043-raspi" }, { "binary_version": "5.4.0-1043.47", "binary_name": "linux-image-5.4.0-1043-raspi" }, { "binary_version": "5.4.0-1043.47", "binary_name": "linux-modules-5.4.0-1043-raspi" }, { "binary_version": "5.4.0-1043.47", "binary_name": "linux-raspi-headers-5.4.0-1043" }, { "binary_version": "5.4.0-1043.47", "binary_name": "linux-raspi-tools-5.4.0-1043" }, { "binary_version": "5.4.0-1043.47", "binary_name": "linux-tools-5.4.0-1043-raspi" } ] }
{ "ecosystem": "Ubuntu:20.04:LTS", "cves": [ { "severity": [ { "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "type": "CVSS_V3" }, { "score": "medium", "type": "Ubuntu" } ], "id": "CVE-2021-3612" }, { "severity": [ { "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "type": "CVSS_V3" }, { "score": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:H/SI:H/SA:L", "type": "CVSS_V4" }, { "score": "medium", "type": "Ubuntu" } ], "id": "CVE-2021-22543" } ] }