CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
Low
EPSS
Percentile
5.1%
In the Linux kernel, the following vulnerability has been resolved:
dmaengine: idxd: fix wq size store permission state WQ size can only be
changed when the device is disabled. Current code allows change when device
is enabled but wq is disabled. Change the check to detect device state.
git.kernel.org/linus/0fff71c5a311e1264988179f7dcc217fda15fadd (5.12-rc8)
git.kernel.org/stable/c/05b7791c4c4aa8304368fdc55ae911f6b34e7281
git.kernel.org/stable/c/0fff71c5a311e1264988179f7dcc217fda15fadd
git.kernel.org/stable/c/4ecf25595273203010bc8318c4aee60ad64037ae
launchpad.net/bugs/cve/CVE-2021-46919
nvd.nist.gov/vuln/detail/CVE-2021-46919
security-tracker.debian.org/tracker/CVE-2021-46919
www.cve.org/CVERecord?id=CVE-2021-46919