Vulnerability-Lookup

CVE-2021-46919 (GCVE-0-2021-46919)

Vulnerability from cvelistv5 – Published: 2024-02-27 06:53 – Updated: 2025-05-04 07:00

Title

dmaengine: idxd: fix wq size store permission state

Summary

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: fix wq size store permission state WQ size can only be changed when the device is disabled. Current code allows change when device is enabled but wq is disabled. Change the check to detect device state.

Severity ?

No CVSS data available.

Assigner

Linux

References

URL

GHSA-FVR5-4QP7-XWJC

Vulnerability from github – Published: 2024-02-27 09:31 – Updated: 2024-04-10 15:30

Details

In the Linux kernel, the following vulnerability has been resolved:

dmaengine: idxd: fix wq size store permission state

WQ size can only be changed when the device is disabled. Current code allows change when device is enabled but wq is disabled. Change the check to detect device state.

Severity ?

5.5 (Medium)


                  
                    CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2021-46919"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2024-02-27T07:15:08Z",
    "severity": "MODERATE"
  },
  "details": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: idxd: fix wq size store permission state\n\nWQ size can only be changed when the device is disabled. Current code\nallows change when device is enabled but wq is disabled. Change the check\nto detect device state.",
  "id": "GHSA-fvr5-4qp7-xwjc",
  "modified": "2024-04-10T15:30:32Z",
  "published": "2024-02-27T09:31:16Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-46919"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/05b7791c4c4aa8304368fdc55ae911f6b34e7281"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/0fff71c5a311e1264988179f7dcc217fda15fadd"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/4ecf25595273203010bc8318c4aee60ad64037ae"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
      "type": "CVSS_V3"
    }
  ]
}

FKIE_CVE-2021-46919

Vulnerability from fkie_nvd - Published: 2024-02-27 07:15 - Updated: 2024-11-21 06:34

Severity ?

5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Summary

References

URL	Tags
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/05b7791c4c4aa8304368fdc55ae911f6b34e7281	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/0fff71c5a311e1264988179f7dcc217fda15fadd	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/4ecf25595273203010bc8318c4aee60ad64037ae	Patch
af854a3a-2127-422b-91ae-364da2661108	https://git.kernel.org/stable/c/05b7791c4c4aa8304368fdc55ae911f6b34e7281	Patch
af854a3a-2127-422b-91ae-364da2661108	https://git.kernel.org/stable/c/0fff71c5a311e1264988179f7dcc217fda15fadd	Patch
af854a3a-2127-422b-91ae-364da2661108	https://git.kernel.org/stable/c/4ecf25595273203010bc8318c4aee60ad64037ae	Patch

Impacted products

	Vendor	Product	Version
	linux	linux_kernel	*
	linux	linux_kernel	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "10B30767-6251-4101-9C1B-5F61DBAFA43A",
              "versionEndExcluding": "5.10.32",
              "versionStartIncluding": "5.6.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "3C5242B9-B5BD-4578-AD66-69DF59D54A14",
              "versionEndExcluding": "5.11.16",
              "versionStartIncluding": "5.11.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: idxd: fix wq size store permission state\n\nWQ size can only be changed when the device is disabled. Current code\nallows change when device is enabled but wq is disabled. Change the check\nto detect device state."
    },
    {
      "lang": "es",
      "value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: dmaengine: idxd: corregir el tama\u00f1o de wq estado del permiso de almacenamiento El tama\u00f1o de WQ solo se puede cambiar cuando el dispositivo est\u00e1 deshabilitado. El c\u00f3digo actual permite cambios cuando el dispositivo est\u00e1 habilitado pero wq est\u00e1 deshabilitado. Cambie la verificaci\u00f3n para detectar el estado del dispositivo."
    }
  ],
  "id": "CVE-2021-46919",
  "lastModified": "2024-11-21T06:34:55.947",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 5.5,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 3.6,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2024-02-27T07:15:08.787",
  "references": [
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/05b7791c4c4aa8304368fdc55ae911f6b34e7281"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/0fff71c5a311e1264988179f7dcc217fda15fadd"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/4ecf25595273203010bc8318c4aee60ad64037ae"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/05b7791c4c4aa8304368fdc55ae911f6b34e7281"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/0fff71c5a311e1264988179f7dcc217fda15fadd"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/4ecf25595273203010bc8318c4aee60ad64037ae"
    }
  ],
  "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CVE-2021-46919

Vulnerability from fstec - Published: 27.02.2024

Title

Уязвимость компонента idxd ядра операционной системы Linux, позволяющая нарушителю выполнить произвольный код

Description

Уязвимость компонента idxd ядра операционной системы Linux связана с возможностью вносить изменения, когда устройство включено, но wq отключен. Эксплуатация уязвимости может позволить нарушителю выполнить произвольный код

Severity ?


                    
                      AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Vendor

ООО «Ред Софт», Сообщество свободного программного обеспечения

Software Name

РЕД ОС (запись в едином реестре российских программ №3751), Linux

Software Version

7.3 (РЕД ОС), от 5.11.0 до 5.11.16 (Linux), от 5.6.0 до 5.10.32 (Linux)

Possible Mitigations

Для Linux: https://git.kernel.org/stable/c/05b7791c4c4aa8304368fdc55ae911f6b34e7281 https://git.kernel.org/stable/c/0fff71c5a311e1264988179f7dcc217fda15fadd https://git.kernel.org/stable/c/4ecf25595273203010bc8318c4aee60ad64037ae Для РедОС: http://repo.red-soft.ru/redos/7.3c/x86_64/updates/

Reference

https://git.kernel.org/stable/c/05b7791c4c4aa8304368fdc55ae911f6b34e7281 https://git.kernel.org/stable/c/0fff71c5a311e1264988179f7dcc217fda15fadd https://git.kernel.org/stable/c/4ecf25595273203010bc8318c4aee60ad64037ae https://redos.red-soft.ru/support/secure/

CWE

CWE-20

JSON

To clipboard

{
  "CVSS 2.0": "AV:L/AC:L/Au:S/C:N/I:N/A:C",
  "CVSS 3.0": "AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
  "CVSS 4.0": null,
  "remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
  "remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
  "\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "\u041e\u041e\u041e \u00ab\u0420\u0435\u0434 \u0421\u043e\u0444\u0442\u00bb, \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
  "\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "7.3 (\u0420\u0415\u0414 \u041e\u0421), \u043e\u0442 5.11.0 \u0434\u043e 5.11.16 (Linux), \u043e\u0442 5.6.0 \u0434\u043e 5.10.32 (Linux)",
  "\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0414\u043b\u044f Linux:\nhttps://git.kernel.org/stable/c/05b7791c4c4aa8304368fdc55ae911f6b34e7281 \nhttps://git.kernel.org/stable/c/0fff71c5a311e1264988179f7dcc217fda15fadd \nhttps://git.kernel.org/stable/c/4ecf25595273203010bc8318c4aee60ad64037ae\n\n\u0414\u043b\u044f \u0420\u0435\u0434\u041e\u0421: http://repo.red-soft.ru/redos/7.3c/x86_64/updates/",
  "\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "27.02.2024",
  "\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "22.04.2024",
  "\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "22.04.2024",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2024-03142",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2021-46919",
  "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
  "\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
  "\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "\u0420\u0415\u0414 \u041e\u0421 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21163751), Linux",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "\u041e\u041e\u041e \u00ab\u0420\u0435\u0434 \u0421\u043e\u0444\u0442\u00bb \u0420\u0415\u0414 \u041e\u0421 7.3  (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21163751), \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Linux \u043e\u0442 5.11.0 \u0434\u043e 5.11.16 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Linux \u043e\u0442 5.6.0 \u0434\u043e 5.10.32 ",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0430 idxd \u044f\u0434\u0440\u0430 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b Linux, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434",
  "\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u0430\u044f \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0430 \u0432\u0432\u043e\u0434\u0438\u043c\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 (CWE-20)",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0430 idxd \u044f\u0434\u0440\u0430 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b Linux \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u044c\u044e \u0432\u043d\u043e\u0441\u0438\u0442\u044c \u0438\u0437\u043c\u0435\u043d\u0435\u043d\u0438\u044f, \u043a\u043e\u0433\u0434\u0430 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u043e \u0432\u043a\u043b\u044e\u0447\u0435\u043d\u043e, \u043d\u043e wq \u043e\u0442\u043a\u043b\u044e\u0447\u0435\u043d. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434",
  "\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
  "\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
  "\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u0441\u0443\u0440\u0441\u0430\u043c\u0438",
  "\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://git.kernel.org/stable/c/05b7791c4c4aa8304368fdc55ae911f6b34e7281\nhttps://git.kernel.org/stable/c/0fff71c5a311e1264988179f7dcc217fda15fadd\nhttps://git.kernel.org/stable/c/4ecf25595273203010bc8318c4aee60ad64037ae\nhttps://redos.red-soft.ru/support/secure/",
  "\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
  "\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430",
  "\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-20",
  "\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 4,6)\n\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 5,5)"
}

CERTFR-2024-AVI-0363

Vulnerability from certfr_avis - Published: 2024-05-03 - Updated: 2024-05-03

De multiples vulnérabilités ont été découvertes dans le noyau Linux de SUSE. Certaines d'entre elles permettent à un attaquant de provoquer une élévation de privilèges, une atteinte à la confidentialité des données et une atteinte à l'intégrité des données.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing 15 SP5
SUSE	N/A	Legacy Module 15-SP5
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing LTSS 15 SP3
SUSE	openSUSE Leap	openSUSE Leap 15.5
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 15-SP5
SUSE	SUSE Linux Enterprise Desktop	SUSE Linux Enterprise Desktop 15 SP5
SUSE	SUSE Manager Retail Branch Server	SUSE Manager Retail Branch Server 4.2
SUSE	openSUSE Leap	openSUSE Leap 15.3
SUSE	SUSE Manager Proxy	SUSE Manager Proxy 4.2
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 15-SP2
SUSE	Public Cloud Module	Public Cloud Module 15-SP5
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro 5.2
SUSE	SUSE Manager Server	SUSE Manager Server 4.2
SUSE	N/A	SUSE Linux Enterprise High Availability Extension 15 SP5
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP5
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro 5.1
SUSE	SUSE Real Time Module	SUSE Real Time Module 15-SP5
SUSE	Basesystem Module	Basesystem Module 15-SP5
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for SAP Applications 15 SP5
SUSE	SUSE Manager Server	SUSE Manager Server 4.1
SUSE	N/A	SUSE Linux Enterprise High Availability Extension 15 SP3
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2
SUSE	SUSE Linux Enterprise Real Time	SUSE Linux Enterprise Real Time 15 SP5
SUSE	SUSE Manager Retail Branch Server	SUSE Manager Retail Branch Server 4.1
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP3 Business Critical Linux 15-SP3
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP2 Business Critical Linux 15-SP2
SUSE	N/A	SUSE Enterprise Storage 7.1
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 15-SP3
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro for Rancher 5.2
SUSE	N/A	SUSE Linux Enterprise High Availability Extension 15 SP2
SUSE	SUSE Manager Proxy	SUSE Manager Proxy 4.1
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro 5.5
SUSE	N/A	SUSE Linux Enterprise Workstation Extension 15 SP5
SUSE	N/A	Development Tools Module 15-SP5
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP2
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP3
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing 15 SP2

References

Title

Publication Time

Tags

Bulletin de sécurité SUSE SUSE-SU-2024:1465-1 du 29 avril 2024	None	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2024:1490-1 du 03 mai 2024	None	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2024:1489-1 du 03 mai 2024	None	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2024:1454-1 du 26 avril 2024	None	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2024:1466-1 du 29 avril 2024	None	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2024:1480-1 du 30 avril 2024	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "SUSE Linux Enterprise High Performance Computing 15 SP5",
      "product": {
        "name": "SUSE Linux Enterprise High Performance Computing",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "Legacy Module 15-SP5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise High Performance Computing LTSS 15 SP3",
      "product": {
        "name": "SUSE Linux Enterprise High Performance Computing",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "openSUSE Leap 15.5",
      "product": {
        "name": "openSUSE Leap",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Live Patching 15-SP5",
      "product": {
        "name": "SUSE Linux Enterprise Live Patching",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Desktop 15 SP5",
      "product": {
        "name": "SUSE Linux Enterprise Desktop",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Manager Retail Branch Server 4.2",
      "product": {
        "name": "SUSE Manager Retail Branch Server",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "openSUSE Leap 15.3",
      "product": {
        "name": "openSUSE Leap",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Manager Proxy 4.2",
      "product": {
        "name": "SUSE Manager Proxy",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
      "product": {
        "name": "SUSE Linux Enterprise Server",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Live Patching 15-SP2",
      "product": {
        "name": "SUSE Linux Enterprise Live Patching",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "Public Cloud Module 15-SP5",
      "product": {
        "name": "Public Cloud Module",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Micro 5.2",
      "product": {
        "name": "SUSE Linux Enterprise Micro",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Manager Server 4.2",
      "product": {
        "name": "SUSE Manager Server",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise High Availability Extension 15 SP5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Server 15 SP5",
      "product": {
        "name": "SUSE Linux Enterprise Server",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
      "product": {
        "name": "SUSE Linux Enterprise Server",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Micro 5.1",
      "product": {
        "name": "SUSE Linux Enterprise Micro",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Real Time Module 15-SP5",
      "product": {
        "name": "SUSE Real Time Module",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "Basesystem Module 15-SP5",
      "product": {
        "name": "Basesystem Module",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
      "product": {
        "name": "SUSE Linux Enterprise Server",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Manager Server 4.1",
      "product": {
        "name": "SUSE Manager Server",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise High Availability Extension 15 SP3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2",
      "product": {
        "name": "SUSE Linux Enterprise High Performance Computing",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Real Time 15 SP5",
      "product": {
        "name": "SUSE Linux Enterprise Real Time",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Manager Retail Branch Server 4.1",
      "product": {
        "name": "SUSE Manager Retail Branch Server",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Server 15 SP3 Business Critical Linux 15-SP3",
      "product": {
        "name": "SUSE Linux Enterprise Server",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Server 15 SP2 Business Critical Linux 15-SP2",
      "product": {
        "name": "SUSE Linux Enterprise Server",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Enterprise Storage 7.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Live Patching 15-SP3",
      "product": {
        "name": "SUSE Linux Enterprise Live Patching",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Micro for Rancher 5.2",
      "product": {
        "name": "SUSE Linux Enterprise Micro",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise High Availability Extension 15 SP2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Manager Proxy 4.1",
      "product": {
        "name": "SUSE Manager Proxy",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise High Performance Computing 15 SP3",
      "product": {
        "name": "SUSE Linux Enterprise High Performance Computing",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Micro 5.5",
      "product": {
        "name": "SUSE Linux Enterprise Micro",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Workstation Extension 15 SP5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "Development Tools Module 15-SP5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3",
      "product": {
        "name": "SUSE Linux Enterprise Server",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Server 15 SP2",
      "product": {
        "name": "SUSE Linux Enterprise Server",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2",
      "product": {
        "name": "SUSE Linux Enterprise Server",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Server 15 SP3",
      "product": {
        "name": "SUSE Linux Enterprise Server",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise High Performance Computing 15 SP2",
      "product": {
        "name": "SUSE Linux Enterprise High Performance Computing",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2021-29155",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-29155"
    },
    {
      "name": "CVE-2021-23134",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-23134"
    },
    {
      "name": "CVE-2022-0487",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-0487"
    },
    {
      "name": "CVE-2022-4744",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-4744"
    },
    {
      "name": "CVE-2023-4881",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-4881"
    },
    {
      "name": "CVE-2023-1192",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-1192"
    },
    {
      "name": "CVE-2023-6531",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-6531"
    },
    {
      "name": "CVE-2023-35827",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-35827"
    },
    {
      "name": "CVE-2023-6536",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-6536"
    },
    {
      "name": "CVE-2023-6356",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-6356"
    },
    {
      "name": "CVE-2023-6535",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-6535"
    },
    {
      "name": "CVE-2023-7192",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-7192"
    },
    {
      "name": "CVE-2023-0160",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-0160"
    },
    {
      "name": "CVE-2023-28746",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-28746"
    },
    {
      "name": "CVE-2024-26599",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26599"
    },
    {
      "name": "CVE-2023-52454",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52454"
    },
    {
      "name": "CVE-2024-26600",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26600"
    },
    {
      "name": "CVE-2023-52467",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52467"
    },
    {
      "name": "CVE-2023-52597",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52597"
    },
    {
      "name": "CVE-2023-52605",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52605"
    },
    {
      "name": "CVE-2023-52462",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52462"
    },
    {
      "name": "CVE-2023-52469",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52469"
    },
    {
      "name": "CVE-2023-52598",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52598"
    },
    {
      "name": "CVE-2023-52470",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52470"
    },
    {
      "name": "CVE-2023-52601",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52601"
    },
    {
      "name": "CVE-2023-52600",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52600"
    },
    {
      "name": "CVE-2023-52602",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52602"
    },
    {
      "name": "CVE-2024-26627",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26627"
    },
    {
      "name": "CVE-2023-52463",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52463"
    },
    {
      "name": "CVE-2023-52447",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52447"
    },
    {
      "name": "CVE-2023-52606",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52606"
    },
    {
      "name": "CVE-2023-52604",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52604"
    },
    {
      "name": "CVE-2023-52587",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52587"
    },
    {
      "name": "CVE-2023-52599",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52599"
    },
    {
      "name": "CVE-2023-52583",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52583"
    },
    {
      "name": "CVE-2023-52603",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52603"
    },
    {
      "name": "CVE-2023-52607",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52607"
    },
    {
      "name": "CVE-2023-52594",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52594"
    },
    {
      "name": "CVE-2023-52595",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52595"
    },
    {
      "name": "CVE-2024-26602",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26602"
    },
    {
      "name": "CVE-2021-47061",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47061"
    },
    {
      "name": "CVE-2021-47013",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47013"
    },
    {
      "name": "CVE-2024-23850",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-23850"
    },
    {
      "name": "CVE-2023-52559",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52559"
    },
    {
      "name": "CVE-2023-52574",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52574"
    },
    {
      "name": "CVE-2021-47083",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47083"
    },
    {
      "name": "CVE-2021-47069",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47069"
    },
    {
      "name": "CVE-2023-52530",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52530"
    },
    {
      "name": "CVE-2023-6270",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-6270"
    },
    {
      "name": "CVE-2023-52531",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52531"
    },
    {
      "name": "CVE-2023-52502",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52502"
    },
    {
      "name": "CVE-2023-52532",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52532"
    },
    {
      "name": "CVE-2021-46929",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46929"
    },
    {
      "name": "CVE-2022-48628",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-48628"
    },
    {
      "name": "CVE-2023-52569",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52569"
    },
    {
      "name": "CVE-2021-46934",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46934"
    },
    {
      "name": "CVE-2024-26607",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26607"
    },
    {
      "name": "CVE-2023-52482",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52482"
    },
    {
      "name": "CVE-2022-48627",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-48627"
    },
    {
      "name": "CVE-2023-52484",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52484"
    },
    {
      "name": "CVE-2021-46991",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46991"
    },
    {
      "name": "CVE-2021-47077",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47077"
    },
    {
      "name": "CVE-2021-46992",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46992"
    },
    {
      "name": "CVE-2021-46921",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46921"
    },
    {
      "name": "CVE-2024-2201",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-2201"
    },
    {
      "name": "CVE-2023-52612",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52612"
    },
    {
      "name": "CVE-2021-47104",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47104"
    },
    {
      "name": "CVE-2023-52567",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52567"
    },
    {
      "name": "CVE-2023-52591",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52591"
    },
    {
      "name": "CVE-2023-52501",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52501"
    },
    {
      "name": "CVE-2023-52519",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52519"
    },
    {
      "name": "CVE-2023-52575",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52575"
    },
    {
      "name": "CVE-2024-26642",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26642"
    },
    {
      "name": "CVE-2024-26667",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26667"
    },
    {
      "name": "CVE-2023-52617",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52617"
    },
    {
      "name": "CVE-2023-52564",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52564"
    },
    {
      "name": "CVE-2024-26645",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26645"
    },
    {
      "name": "CVE-2023-52511",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52511"
    },
    {
      "name": "CVE-2024-0841",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-0841"
    },
    {
      "name": "CVE-2023-52476",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52476"
    },
    {
      "name": "CVE-2023-52563",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52563"
    },
    {
      "name": "CVE-2024-26695",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26695"
    },
    {
      "name": "CVE-2021-47107",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47107"
    },
    {
      "name": "CVE-2021-47100",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47100"
    },
    {
      "name": "CVE-2021-47087",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47087"
    },
    {
      "name": "CVE-2023-52453",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52453"
    },
    {
      "name": "CVE-2023-52500",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52500"
    },
    {
      "name": "CVE-2021-47096",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47096"
    },
    {
      "name": "CVE-2021-46926",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46926"
    },
    {
      "name": "CVE-2023-52608",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52608"
    },
    {
      "name": "CVE-2022-48629",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-48629"
    },
    {
      "name": "CVE-2024-26717",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26717"
    },
    {
      "name": "CVE-2024-26670",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26670"
    },
    {
      "name": "CVE-2024-26654",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26654"
    },
    {
      "name": "CVE-2024-26612",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26612"
    },
    {
      "name": "CVE-2021-47101",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47101"
    },
    {
      "name": "CVE-2023-52477",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52477"
    },
    {
      "name": "CVE-2023-52504",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52504"
    },
    {
      "name": "CVE-2023-52615",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52615"
    },
    {
      "name": "CVE-2024-26629",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26629"
    },
    {
      "name": "CVE-2024-26646",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26646"
    },
    {
      "name": "CVE-2023-52528",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52528"
    },
    {
      "name": "CVE-2023-52481",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52481"
    },
    {
      "name": "CVE-2024-26659",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26659"
    },
    {
      "name": "CVE-2023-52486",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52486"
    },
    {
      "name": "CVE-2021-47108",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47108"
    },
    {
      "name": "CVE-2023-52628",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52628"
    },
    {
      "name": "CVE-2023-52474",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52474"
    },
    {
      "name": "CVE-2022-48630",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-48630"
    },
    {
      "name": "CVE-2023-52529",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52529"
    },
    {
      "name": "CVE-2023-52524",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52524"
    },
    {
      "name": "CVE-2021-47094",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47094"
    },
    {
      "name": "CVE-2023-52493",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52493"
    },
    {
      "name": "CVE-2021-47095",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47095"
    },
    {
      "name": "CVE-2024-26614",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26614"
    },
    {
      "name": "CVE-2023-52509",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52509"
    },
    {
      "name": "CVE-2023-52639",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52639"
    },
    {
      "name": "CVE-2023-52515",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52515"
    },
    {
      "name": "CVE-2023-52637",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52637"
    },
    {
      "name": "CVE-2023-52508",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52508"
    },
    {
      "name": "CVE-2023-52494",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52494"
    },
    {
      "name": "CVE-2021-46930",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46930"
    },
    {
      "name": "CVE-2023-52497",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52497"
    },
    {
      "name": "CVE-2023-52507",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52507"
    },
    {
      "name": "CVE-2021-47082",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47082"
    },
    {
      "name": "CVE-2021-46933",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46933"
    },
    {
      "name": "CVE-2023-52492",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52492"
    },
    {
      "name": "CVE-2023-52582",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52582"
    },
    {
      "name": "CVE-2021-46931",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46931"
    },
    {
      "name": "CVE-2023-52621",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52621"
    },
    {
      "name": "CVE-2024-25739",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-25739"
    },
    {
      "name": "CVE-2021-47105",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47105"
    },
    {
      "name": "CVE-2021-47099",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47099"
    },
    {
      "name": "CVE-2021-46925",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46925"
    },
    {
      "name": "CVE-2021-47102",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47102"
    },
    {
      "name": "CVE-2021-47091",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47091"
    },
    {
      "name": "CVE-2023-52518",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52518"
    },
    {
      "name": "CVE-2021-47098",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47098"
    },
    {
      "name": "CVE-2022-48626",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-48626"
    },
    {
      "name": "CVE-2023-52525",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52525"
    },
    {
      "name": "CVE-2023-52513",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52513"
    },
    {
      "name": "CVE-2024-25742",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-25742"
    },
    {
      "name": "CVE-2023-52450",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52450"
    },
    {
      "name": "CVE-2021-46927",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46927"
    },
    {
      "name": "CVE-2024-22099",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-22099"
    },
    {
      "name": "CVE-2023-52566",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52566"
    },
    {
      "name": "CVE-2024-26664",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26664"
    },
    {
      "name": "CVE-2023-52576",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52576"
    },
    {
      "name": "CVE-2021-47093",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47093"
    },
    {
      "name": "CVE-2023-52632",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52632"
    },
    {
      "name": "CVE-2023-52623",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52623"
    },
    {
      "name": "CVE-2024-26620",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26620"
    },
    {
      "name": "CVE-2023-52619",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52619"
    },
    {
      "name": "CVE-2021-46936",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46936"
    },
    {
      "name": "CVE-2021-47097",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47097"
    },
    {
      "name": "CVE-2024-26651",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26651"
    },
    {
      "name": "CVE-2023-52520",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52520"
    },
    {
      "name": "CVE-2023-7042",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-7042"
    },
    {
      "name": "CVE-2024-23307",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-23307"
    },
    {
      "name": "CVE-2023-52510",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52510"
    },
    {
      "name": "CVE-2023-52523",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52523"
    },
    {
      "name": "CVE-2023-52517",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52517"
    },
    {
      "name": "CVE-2024-26769",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26769"
    },
    {
      "name": "CVE-2024-26754",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26754"
    },
    {
      "name": "CVE-2024-26697",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26697"
    },
    {
      "name": "CVE-2024-26704",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26704"
    },
    {
      "name": "CVE-2024-26689",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26689"
    },
    {
      "name": "CVE-2024-26727",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26727"
    },
    {
      "name": "CVE-2024-26745",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26745"
    },
    {
      "name": "CVE-2024-26776",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26776"
    },
    {
      "name": "CVE-2024-26718",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26718"
    },
    {
      "name": "CVE-2024-26766",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26766"
    },
    {
      "name": "CVE-2024-26685",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26685"
    },
    {
      "name": "CVE-2024-26737",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26737"
    },
    {
      "name": "CVE-2024-26771",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26771"
    },
    {
      "name": "CVE-2024-26787",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26787"
    },
    {
      "name": "CVE-2024-26798",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26798"
    },
    {
      "name": "CVE-2024-26743",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26743"
    },
    {
      "name": "CVE-2024-26805",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26805"
    },
    {
      "name": "CVE-2024-26793",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26793"
    },
    {
      "name": "CVE-2024-26684",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26684"
    },
    {
      "name": "CVE-2024-26660",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26660"
    },
    {
      "name": "CVE-2024-26749",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26749"
    },
    {
      "name": "CVE-2024-26744",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26744"
    },
    {
      "name": "CVE-2024-26763",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26763"
    },
    {
      "name": "CVE-2024-26760",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26760"
    },
    {
      "name": "CVE-2024-26722",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26722"
    },
    {
      "name": "CVE-2024-26681",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26681"
    },
    {
      "name": "CVE-2024-26733",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26733"
    },
    {
      "name": "CVE-2024-26779",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26779"
    },
    {
      "name": "CVE-2024-26747",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26747"
    },
    {
      "name": "CVE-2024-26696",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26696"
    },
    {
      "name": "CVE-2024-26790",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26790"
    },
    {
      "name": "CVE-2024-26680",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26680"
    },
    {
      "name": "CVE-2024-26751",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26751"
    },
    {
      "name": "CVE-2024-26736",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26736"
    },
    {
      "name": "CVE-2021-46990",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46990"
    },
    {
      "name": "CVE-2021-47180",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47180"
    },
    {
      "name": "CVE-2020-36780",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-36780"
    },
    {
      "name": "CVE-2021-47014",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47014"
    },
    {
      "name": "CVE-2021-47058",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47058"
    },
    {
      "name": "CVE-2021-47167",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47167"
    },
    {
      "name": "CVE-2021-46908",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46908"
    },
    {
      "name": "CVE-2021-47035",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47035"
    },
    {
      "name": "CVE-2023-52590",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52590"
    },
    {
      "name": "CVE-2021-47130",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47130"
    },
    {
      "name": "CVE-2021-47056",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47056"
    },
    {
      "name": "CVE-2021-46918",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46918"
    },
    {
      "name": "CVE-2021-47138",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47138"
    },
    {
      "name": "CVE-2021-46960",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46960"
    },
    {
      "name": "CVE-2021-47046",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47046"
    },
    {
      "name": "CVE-2024-26848",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26848"
    },
    {
      "name": "CVE-2021-47170",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47170"
    },
    {
      "name": "CVE-2021-47164",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47164"
    },
    {
      "name": "CVE-2021-47118",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47118"
    },
    {
      "name": "CVE-2021-46920",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46920"
    },
    {
      "name": "CVE-2021-47139",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47139"
    },
    {
      "name": "CVE-2023-52488",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52488"
    },
    {
      "name": "CVE-2021-46976",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46976"
    },
    {
      "name": "CVE-2021-46922",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46922"
    },
    {
      "name": "CVE-2024-26807",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26807"
    },
    {
      "name": "CVE-2021-47150",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47150"
    },
    {
      "name": "CVE-2021-46943",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46943"
    },
    {
      "name": "CVE-2021-46914",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46914"
    },
    {
      "name": "CVE-2021-46950",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46950"
    },
    {
      "name": "CVE-2021-46971",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46971"
    },
    {
      "name": "CVE-2021-47109",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47109"
    },
    {
      "name": "CVE-2021-46988",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46988"
    },
    {
      "name": "CVE-2021-46919",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46919"
    },
    {
      "name": "CVE-2021-46944",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46944"
    },
    {
      "name": "CVE-2021-46938",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46938"
    },
    {
      "name": "CVE-2021-46981",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46981"
    },
    {
      "name": "CVE-2021-47175",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47175"
    },
    {
      "name": "CVE-2021-47049",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47049"
    },
    {
      "name": "CVE-2023-52627",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52627"
    },
    {
      "name": "CVE-2021-47144",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47144"
    },
    {
      "name": "CVE-2021-47068",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47068"
    },
    {
      "name": "CVE-2021-47044",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47044"
    },
    {
      "name": "CVE-2021-47137",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47137"
    },
    {
      "name": "CVE-2021-47161",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47161"
    },
    {
      "name": "CVE-2021-47177",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47177"
    },
    {
      "name": "CVE-2021-46917",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46917"
    },
    {
      "name": "CVE-2021-46958",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46958"
    },
    {
      "name": "CVE-2021-47020",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47020"
    },
    {
      "name": "CVE-2021-47110",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47110"
    },
    {
      "name": "CVE-2021-47017",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47017"
    },
    {
      "name": "CVE-2021-46983",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46983"
    },
    {
      "name": "CVE-2021-47119",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47119"
    },
    {
      "name": "CVE-2021-47165",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47165"
    },
    {
      "name": "CVE-2021-46998",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46998"
    },
    {
      "name": "CVE-2021-47176",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47176"
    },
    {
      "name": "CVE-2021-47006",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47006"
    },
    {
      "name": "CVE-2021-47073",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47073"
    },
    {
      "name": "CVE-2021-47055",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47055"
    },
    {
      "name": "CVE-2021-47141",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47141"
    },
    {
      "name": "CVE-2021-47117",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47117"
    },
    {
      "name": "CVE-2021-47172",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47172"
    },
    {
      "name": "CVE-2023-52572",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52572"
    },
    {
      "name": "CVE-2020-36781",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-36781"
    },
    {
      "name": "CVE-2021-47189",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47189"
    },
    {
      "name": "CVE-2023-52636",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52636"
    },
    {
      "name": "CVE-2021-47181",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47181"
    },
    {
      "name": "CVE-2021-47001",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47001"
    },
    {
      "name": "CVE-2024-25743",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-25743"
    },
    {
      "name": "CVE-2021-47173",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47173"
    },
    {
      "name": "CVE-2021-46962",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46962"
    },
    {
      "name": "CVE-2021-46984",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46984"
    },
    {
      "name": "CVE-2021-47063",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47063"
    },
    {
      "name": "CVE-2021-47179",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47179"
    },
    {
      "name": "CVE-2021-47182",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47182"
    },
    {
      "name": "CVE-2021-47065",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47065"
    },
    {
      "name": "CVE-2021-47071",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47071"
    },
    {
      "name": "CVE-2021-46911",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46911"
    },
    {
      "name": "CVE-2021-47168",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47168"
    },
    {
      "name": "CVE-2021-47038",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47038"
    },
    {
      "name": "CVE-2021-46959",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46959"
    },
    {
      "name": "CVE-2021-47153",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47153"
    },
    {
      "name": "CVE-2021-47120",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47120"
    },
    {
      "name": "CVE-2021-47174",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47174"
    },
    {
      "name": "CVE-2021-47015",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47015"
    },
    {
      "name": "CVE-2021-47142",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47142"
    },
    {
      "name": "CVE-2021-46961",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46961"
    },
    {
      "name": "CVE-2021-47003",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47003"
    },
    {
      "name": "CVE-2021-47171",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47171"
    },
    {
      "name": "CVE-2021-47202",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47202"
    },
    {
      "name": "CVE-2021-47112",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47112"
    },
    {
      "name": "CVE-2021-47169",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47169"
    },
    {
      "name": "CVE-2021-47160",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47160"
    },
    {
      "name": "CVE-2021-47136",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47136"
    },
    {
      "name": "CVE-2021-47045",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47045"
    },
    {
      "name": "CVE-2020-36783",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-36783"
    },
    {
      "name": "CVE-2021-47114",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47114"
    },
    {
      "name": "CVE-2021-47034",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47034"
    },
    {
      "name": "CVE-2021-47051",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47051"
    },
    {
      "name": "CVE-2021-46909",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46909"
    },
    {
      "name": "CVE-2021-47026",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47026"
    },
    {
      "name": "CVE-2021-46963",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46963"
    },
    {
      "name": "CVE-2023-52503",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52503"
    },
    {
      "name": "CVE-2021-46939",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46939"
    },
    {
      "name": "CVE-2021-46951",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46951"
    },
    {
      "name": "CVE-2021-47070",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47070"
    },
    {
      "name": "CVE-2021-47183",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47183"
    },
    {
      "name": "CVE-2021-46956",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46956"
    },
    {
      "name": "CVE-2021-47166",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47166"
    },
    {
      "name": "CVE-2021-47000",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47000"
    },
    {
      "name": "CVE-2020-36782",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-36782"
    },
    {
      "name": "CVE-2021-47009",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47009"
    },
    {
      "name": "CVE-2021-47185",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-47185"
    },
    {
      "name": "CVE-2023-52561",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52561"
    },
    {
      "name": "CVE-2021-46980",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-46980"
    }
  ],
  "initial_release_date": "2024-05-03T00:00:00",
  "last_revision_date": "2024-05-03T00:00:00",
  "links": [],
  "reference": "CERTFR-2024-AVI-0363",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2024-05-03T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
    },
    {
      "description": "D\u00e9ni de service"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans \u003cspan\nclass=\"textit\"\u003ele noyau Linux de SUSE\u003c/span\u003e. Certaines d\u0027entre elles\npermettent \u00e0 un attaquant de provoquer une \u00e9l\u00e9vation de privil\u00e8ges, une\natteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et une atteinte \u00e0 l\u0027int\u00e9grit\u00e9\ndes donn\u00e9es.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de SUSE",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2024:1465-1 du 29 avril 2024",
      "url": "https://www.suse.com/support/update/announcement/2024/suse-su-20241465-1"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2024:1490-1 du 03 mai 2024",
      "url": "https://www.suse.com/support/update/announcement/2024/suse-su-20241490-1"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2024:1489-1 du 03 mai 2024",
      "url": "https://www.suse.com/support/update/announcement/2024/suse-su-20241489-1"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2024:1454-1 du 26 avril 2024",
      "url": "https://www.suse.com/support/update/announcement/2024/suse-su-20241454-1"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2024:1466-1 du 29 avril 2024",
      "url": "https://www.suse.com/support/update/announcement/2024/suse-su-20241466-1"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2024:1480-1 du 30 avril 2024",
      "url": "https://www.suse.com/support/update/announcement/2024/suse-su-20241480-1"
    }
  ]
}

GSD-2021-46919

Vulnerability from gsd - Updated: 2024-02-26 06:03

Details

Aliases

CVE-2021-46919

JSON

To clipboard

{
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2021-46919"
      ],
      "details": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: idxd: fix wq size store permission state\n\nWQ size can only be changed when the device is disabled. Current code\nallows change when device is enabled but wq is disabled. Change the check\nto detect device state.",
      "id": "GSD-2021-46919",
      "modified": "2024-02-26T06:03:52.634122Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@kernel.org",
        "ID": "CVE-2021-46919",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "Linux",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "c52ca478233c",
                          "version_value": "4ecf25595273"
                        },
                        {
                          "version_value": "not down converted",
                          "x_cve_json_5_version_data": {
                            "defaultStatus": "affected",
                            "versions": [
                              {
                                "status": "affected",
                                "version": "5.6"
                              },
                              {
                                "lessThan": "5.6",
                                "status": "unaffected",
                                "version": "0",
                                "versionType": "custom"
                              },
                              {
                                "lessThanOrEqual": "5.10.*",
                                "status": "unaffected",
                                "version": "5.10.32",
                                "versionType": "custom"
                              },
                              {
                                "lessThanOrEqual": "5.11.*",
                                "status": "unaffected",
                                "version": "5.11.16",
                                "versionType": "custom"
                              },
                              {
                                "lessThanOrEqual": "*",
                                "status": "unaffected",
                                "version": "5.12",
                                "versionType": "original_commit_for_fix"
                              }
                            ]
                          }
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Linux"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: idxd: fix wq size store permission state\n\nWQ size can only be changed when the device is disabled. Current code\nallows change when device is enabled but wq is disabled. Change the check\nto detect device state."
          }
        ]
      },
      "generator": {
        "engine": "bippy-b01c2a820106"
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://git.kernel.org/stable/c/4ecf25595273203010bc8318c4aee60ad64037ae",
            "refsource": "MISC",
            "url": "https://git.kernel.org/stable/c/4ecf25595273203010bc8318c4aee60ad64037ae"
          },
          {
            "name": "https://git.kernel.org/stable/c/05b7791c4c4aa8304368fdc55ae911f6b34e7281",
            "refsource": "MISC",
            "url": "https://git.kernel.org/stable/c/05b7791c4c4aa8304368fdc55ae911f6b34e7281"
          },
          {
            "name": "https://git.kernel.org/stable/c/0fff71c5a311e1264988179f7dcc217fda15fadd",
            "refsource": "MISC",
            "url": "https://git.kernel.org/stable/c/0fff71c5a311e1264988179f7dcc217fda15fadd"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "cve": {
        "configurations": [
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "10B30767-6251-4101-9C1B-5F61DBAFA43A",
                    "versionEndExcluding": "5.10.32",
                    "versionStartIncluding": "5.6.0",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "3C5242B9-B5BD-4578-AD66-69DF59D54A14",
                    "versionEndExcluding": "5.11.16",
                    "versionStartIncluding": "5.11.0",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ]
          }
        ],
        "descriptions": [
          {
            "lang": "en",
            "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: idxd: fix wq size store permission state\n\nWQ size can only be changed when the device is disabled. Current code\nallows change when device is enabled but wq is disabled. Change the check\nto detect device state."
          },
          {
            "lang": "es",
            "value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: dmaengine: idxd: corregir el tama\u00f1o de wq estado del permiso de almacenamiento El tama\u00f1o de WQ solo se puede cambiar cuando el dispositivo est\u00e1 deshabilitado. El c\u00f3digo actual permite cambios cuando el dispositivo est\u00e1 habilitado pero wq est\u00e1 deshabilitado. Cambie la verificaci\u00f3n para detectar el estado del dispositivo."
          }
        ],
        "id": "CVE-2021-46919",
        "lastModified": "2024-04-10T14:46:43.057",
        "metrics": {
          "cvssMetricV31": [
            {
              "cvssData": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 5.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.1"
              },
              "exploitabilityScore": 1.8,
              "impactScore": 3.6,
              "source": "nvd@nist.gov",
              "type": "Primary"
            }
          ]
        },
        "published": "2024-02-27T07:15:08.787",
        "references": [
          {
            "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
            "tags": [
              "Patch"
            ],
            "url": "https://git.kernel.org/stable/c/05b7791c4c4aa8304368fdc55ae911f6b34e7281"
          },
          {
            "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
            "tags": [
              "Patch"
            ],
            "url": "https://git.kernel.org/stable/c/0fff71c5a311e1264988179f7dcc217fda15fadd"
          },
          {
            "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
            "tags": [
              "Patch"
            ],
            "url": "https://git.kernel.org/stable/c/4ecf25595273203010bc8318c4aee60ad64037ae"
          }
        ],
        "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "vulnStatus": "Analyzed",
        "weaknesses": [
          {
            "description": [
              {
                "lang": "en",
                "value": "NVD-CWE-noinfo"
              }
            ],
            "source": "nvd@nist.gov",
            "type": "Primary"
          }
        ]
      }
    }
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2021-46919 (GCVE-0-2021-46919)

GHSA-FVR5-4QP7-XWJC

FKIE_CVE-2021-46919

CVE-2021-46919

CERTFR-2024-AVI-0363

Solution

GSD-2021-46919

Tags

Sightings

Nomenclature