Lucene search
UbuntuUSN-5014-1HistoryJul 20, 2021 - 12:00 a.m.
Linux kernel vulnerability
2021-07-2000:00:00
ubuntu.com
110
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
55.1%
Releases
- Ubuntu 21.04
- Ubuntu 18.04 ESM
- Ubuntu 16.04 ESM
- Ubuntu 14.04 ESM
Packages
- linux - Linux kernel
- linux-aws - Linux kernel for Amazon Web Services (AWS) systems
- linux-azure - Linux kernel for Microsoft Azure Cloud systems
- linux-gcp - Linux kernel for Google Cloud Platform (GCP) systems
- linux-gke-5.3 - Linux kernel for Google Container Engine (GKE) systems
- linux-hwe - Linux hardware enablement (HWE) kernel
- linux-kvm - Linux kernel for cloud environments
- linux-lts-xenial - Linux hardware enablement kernel from Xenial for Trusty
- linux-oracle - Linux kernel for Oracle Cloud systems
- linux-raspi - Linux kernel for Raspberry Pi (V8) systems
- linux-raspi2-5.3 - Linux kernel for Raspberry Pi (V8) systems
Details
It was discovered that the virtual file system implementation in the Linux
kernel contained an unsigned to signed integer conversion error. A local
attacker could use this to cause a denial of service (system crash) or
execute arbitrary code.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 21.04 | noarch | linux-image-5.11.0-1012-azure | < 5.11.0-1012.13 | UNKNOWN |
| Ubuntu | 21.04 | noarch | linux-image-5.11.0-1012-azure-dbgsym | < 5.11.0-1012.13 | UNKNOWN |
| Ubuntu | 21.04 | noarch | linux-image-5.11.0-1012-kvm | < 5.11.0-1012.13 | UNKNOWN |
| Ubuntu | 21.04 | noarch | linux-image-5.11.0-1012-kvm-dbgsym | < 5.11.0-1012.13 | UNKNOWN |
| Ubuntu | 21.04 | noarch | linux-image-5.11.0-1013-oracle | < 5.11.0-1013.14 | UNKNOWN |
| Ubuntu | 21.04 | noarch | linux-image-5.11.0-1013-oracle-dbgsym | < 5.11.0-1013.14 | UNKNOWN |
| Ubuntu | 21.04 | noarch | linux-image-5.11.0-1014-aws | < 5.11.0-1014.15 | UNKNOWN |
| Ubuntu | 21.04 | noarch | linux-aws-headers-5.11.0-1014 | < 5.11.0-1014.15 | UNKNOWN |
| Ubuntu | 21.04 | noarch | linux-aws-tools-5.11.0-1014 | < 5.11.0-1014.15 | UNKNOWN |
| Ubuntu | 21.04 | noarch | linux-buildinfo-5.11.0-1014-aws | < 5.11.0-1014.15 | UNKNOWN |
References
Related
nessus
nessus
Amazon Linux 2 : kernel (ALASKERNEL-5.10-2022-003)
2022-05-02 00:00:00
Amazon Linux 2 : kernel (ALAS-2021-1691)
2021-07-22 00:00:00
Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2021-9371)
2021-07-22 00:00:00
githubexploit
githubexploit
Exploit for Classic Buffer Overflow in Linux Linux Kernel
2021-07-21 18:22:55
Exploit for Classic Buffer Overflow in Linux Linux Kernel
2021-09-02 04:51:54
Exploit for Classic Buffer Overflow in Linux Linux Kernel
2021-07-26 03:24:35
openvas
openvas
Fedora: Security Advisory for kernel (FEDORA-2021-07dc0b3eb1)
2021-07-27 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2021-2570)
2021-10-12 00:00:00
Ubuntu: Security Advisory (USN-5014-1)
2021-07-21 00:00:00
cnvd
cnvd
Linux kernel input validation error vulnerability (CNVD-2021-53926)
2021-07-23 00:00:00
osv
osv
[Security] Linux kernel vulnerability advisory
2021-12-01 00:00:00
CVE-2021-33909
2021-07-20 19:15:09
oraclelinux
oraclelinux
Unbreakable Enterprise kernel-container security update
2021-07-22 00:00:00
Unbreakable Enterprise kernel-container security update
2021-07-22 00:00:00
Unbreakable Enterprise kernel security update
2021-07-22 00:00:00
fedora
fedora
[SECURITY] Fedora 34 Update: kernel-tools-5.13.3-200.fc34
2021-07-22 01:15:35
[SECURITY] Fedora 34 Update: kernel-headers-5.13.3-200.fc34
2021-07-22 01:15:35
[SECURITY] Fedora 34 Update: kernel-5.13.4-200.fc34
2021-07-22 01:15:35
amazon
amazon
Important: kernel
2021-07-20 22:24:00
Important: kernel
2021-07-20 22:24:00
f5
f5
K75133288 : Linux kernel vulnerability CVE-2021-33909
2021-08-03 00:00:00
redhat
redhat
(RHSA-2021:2722) Important: kernel security update
2021-07-20 13:32:30
(RHSA-2021:2723) Important: kpatch-patch security update
2021-07-20 19:50:48
(RHSA-2021:2727) Important: kpatch-patch security update
2021-07-20 19:53:56
nvd
nvd
CVE-2021-33909
2021-07-20 19:15:09
prion
prion
Integer overflow
2021-07-20 19:15:00
cloudlinux
cloudlinux
Fix of CVE: CVE-2021-33909
2021-09-21 22:06:27
Fix of CVE: CVE-2021-33909
2021-09-21 22:06:03
veracode
veracode
Privilege Escalation
2021-08-12 15:38:28
cbl_mariner
cbl_mariner
CVE-2021-33909 affecting package kernel for versions less than 5.10.78.1-1
2022-04-09 06:52:47
CVE-2021-33909 affecting package kernel 5.10.168.1-1
2021-09-09 15:03:26
redhatcve
redhatcve
CVE-2021-33909
2021-07-20 12:55:12
cvelist
cvelist
CVE-2021-33909
2021-07-20 18:01:34
virtuozzo
virtuozzo
debiancve
debiancve
CVE-2021-33909
2021-07-20 19:15:09
cve
cve
CVE-2021-33909
2021-07-20 19:15:09
ubuntucve
ubuntucve
CVE-2021-33909
2021-07-20 00:00:00
attackerkb
attackerkb
CVE-2020-8835
2020-03-30 00:00:00
CVE-2021-33909
2021-07-20 00:00:00
qualysblog
qualysblog
Sequoia: A Local Privilege Escalation Vulnerability in Linux’s Filesystem Layer (CVE-2021-33909)
2021-07-20 12:54:49
CVE-2021-33910: Denial of Service (Stack Exhaustion) in systemd (PID 1)
2021-07-20 12:55:42
Qualys Research Nominated for Pwnie Awards 2021
2021-08-02 15:59:06
rocky
rocky
kernel security and bug fix update
2021-07-20 13:30:15
avleonov
avleonov
Last Week’s Security news: Pegasus, SeriousSAM, Sequoia
2021-07-26 16:46:10
ubuntu
ubuntu
Kernel Live Patch Security Notice
2021-07-26 00:00:00
Linux kernel vulnerabilities
2021-07-20 00:00:00
Kernel Live Patch Security Notice
2021-09-13 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2021-0270
2021-07-20 00:00:00
Important Photon OS Security Update - PHSA-2021-0065
2021-07-21 00:00:00
suse
suse
Security update for the Linux Kernel (important)
2021-07-20 00:00:00
Security update for the Linux Kernel (important)
2021-07-20 00:00:00
Security update for the Linux Kernel (important)
2021-07-22 00:00:00
almalinux
almalinux
Important: kernel security and bug fix update
2021-07-20 13:30:15
archlinux
archlinux
[ASA-202107-48] linux: privilege escalation
2021-07-21 00:00:00
[ASA-202107-49] linux-zen: privilege escalation
2021-07-21 00:00:00
[ASA-202107-50] linux-hardened: privilege escalation
2021-07-21 00:00:00
mageia
mageia
Updated kernel packages fix security vulnerabilities
2021-07-22 10:08:00
Updated kernel-linus packages fix security vulnerabilities
2021-07-22 10:08:00
thn
thn
New Windows and Linux Flaws Give Attackers Highest System Privileges
2021-07-21 06:37:00
ibm
ibm
cloudfoundry
cloudfoundry
USN-5017-1: Linux kernel vulnerabilities | Cloud Foundry
2021-09-07 00:00:00
packetstorm
packetstorm
Sequoia: A Deep Root In Linux's Filesystem Layer
2021-07-21 00:00:00
debian
debian
[SECURITY] [DLA 2713-2] linux security update
2021-07-20 20:03:38
[SECURITY] [DLA 2714-1] linux-4.19 security update
2021-07-20 19:58:55
[SECURITY] [DSA 4941-1] linux security update
2021-07-20 12:53:32
centos
centos
bpftool, kernel, perf, python security update
2021-07-22 13:52:55
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
55.1%
Related for USN-5014-1