Milan Broz discovered that cryptsetup incorrectly handled LUKS2
reencryption recovery. An attacker with physical access to modify the
encrypted device header may trigger the device to be unencrypted the next
time it is mounted by the user.

On Ubuntu 20.04 LTS, this issue was fixed by disabling the online
reencryption feature.

References

ubuntu.com/security/CVE-2021-4122

ubuntu.com/security/notices/USN-5286-1

mageia 1

ubuntucve 1

cbl_mariner 1

thn 1

osv 4

openvas 17

rocky 2

nessus 22

fedora 2

oraclelinux 1

debiancve 1

veracode 1

prion 1

redhatcve 1

ubuntu 1

nvd 1

debian 1

alpinelinux 1

redhat 11

cve 1

almalinux 1

cvelist 1

suse 1

photon 4

ibm 4

ics 1

mageia

Updated cryptsetup packages fix security vulnerability

2022-02-03 23:29:44

ubuntucve

CVE-2021-4122

2022-01-13 00:00:00

cbl_mariner

CVE-2021-4122 affecting package cryptsetup 2.3.3-2

2022-10-13 00:40:13

thn

Patching the CentOS 8 Encryption Bug is Urgent – What Are Your Plans?

2022-01-27 12:50:00

osv

cryptsetup - security update

2022-02-10 00:00:00

Moderate: cryptsetup security update

2022-02-01 20:13:30

CVE-2021-4122

2022-08-24 16:15:09

openvas

Huawei EulerOS: Security Advisory for cryptsetup (EulerOS-SA-2022-2411)

2022-10-10 00:00:00

Debian: Security Advisory (DSA-5070-1)

2022-02-17 00:00:00

Huawei EulerOS: Security Advisory for cryptsetup (EulerOS-SA-2023-1004)

2023-01-09 00:00:00

rocky

cryptsetup security update

2022-02-01 20:13:30

cryptsetup security update

2022-02-02 04:36:32

nessus

EulerOS Virtualization 2.11.1 : cryptsetup (EulerOS-SA-2023-2033)

2023-06-07 00:00:00

EulerOS Virtualization 2.10.1 : cryptsetup (EulerOS-SA-2022-2888)

2022-12-27 00:00:00

Amazon Linux 2022 : (ALAS2022-2022-174)

2022-11-04 00:00:00

fedora

[SECURITY] Fedora 35 Update: cryptsetup-2.4.3-1.fc35

2022-01-16 01:23:06

[SECURITY] Fedora 34 Update: cryptsetup-2.3.7-1.fc34

2022-01-26 23:40:21

oraclelinux

cryptsetup security update

2022-02-02 00:00:00

debiancve

CVE-2021-4122

2022-08-24 16:15:09

veracode

Insecure Cryptography

2022-01-18 20:50:21

prion

Code injection

2022-08-24 16:15:00

redhatcve

CVE-2021-4122

2022-01-13 09:15:59

ubuntu

cryptsetup vulnerability

2022-02-15 00:00:00

nvd

CVE-2021-4122

2022-08-24 16:15:09

debian

[SECURITY] [DSA 5070-1] cryptsetup security update

2022-02-10 19:33:39

alpinelinux

CVE-2021-4122

2022-08-24 16:15:09

redhat

(RHSA-2022:0370) Moderate: cryptsetup security update

2022-02-01 20:13:30

(RHSA-2022:0687) Moderate: OpenShift API for Data Protection (OADP) 1.0.1 security and bug fix update

2022-02-28 09:35:55

(RHSA-2022:0476) Important: Red Hat OpenShift GitOps security update

2022-02-08 22:00:22

cve

CVE-2021-4122

2022-08-24 16:15:09

almalinux

Moderate: cryptsetup security update

2022-02-01 20:13:30

cvelist

CVE-2021-4122

2022-08-24 15:08:58

suse

Security update for varnish (moderate)

2022-06-15 00:00:00

photon

Critical Photon OS Security Update - PHSA-2022-0353

2022-01-19 00:00:00

Critical Photon OS Security Update - PHSA-2022-3.0-0353

2022-01-19 00:00:00

Critical Photon OS Security Update - PHSA-2022-4.0-0145

2022-01-22 00:00:00

ibm

Security Bulletin: Multiple Security Vulnerabilities may affect IBM Robotic Process Automation for Cloud Pak

2022-08-20 18:34:23

Security Bulletin: IBM Cloud Pak for Security is vulnerable to using components with known vulnerabilities

2022-10-28 19:52:12

Security Bulletin: Netcool Operations Insight v1.6.4 contains fixes for multiple security vulnerabilities.

2022-06-14 15:48:07

ics

Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1

2023-12-14 12:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

6.3 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

30.4%

JSON

Related for OSV:USN-5286-1