Privilege Escalation

2021-08-1215:39:39

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.0004 Low

EPSS

Percentile

5.1%

JSON

linux-oracle is vulnerable to privilege escalation. The vulnerability exists due to a race condition in the CAN BCM networking protocol of the Linux kernel leading to multiple use-after-free vulnerabilities.

CPENameOperatorVersion
linux-oracle:focaleq5.4.0.1024.21
linux-oracle:focaleq5.4.0.1009.9
linux-oracle:focaleq5.4.0.1030.27
linux-oracle:focaleq5.4.0.1021.19
linux-oracle:focaleq5.4.0.1025.22
linux-oracle:focaleq5.4.0.1029.26
linux-aws:hirsuteeq5.8.0.1010.12
linux-aws:hirsuteeq5.8.0.1023.25+21.04.18
linux-gkeop:focaleq5.4.0.1010.13
linux-azure:groovyeq5.8.0.1004.4

Name	Operator	Version
linux-oracle:focal	eq	5.4.0.1024.21
linux-oracle:focal	eq	5.4.0.1009.9
linux-oracle:focal	eq	5.4.0.1030.27
linux-oracle:focal	eq	5.4.0.1021.19
linux-oracle:focal	eq	5.4.0.1025.22
linux-oracle:focal	eq	5.4.0.1029.26
linux-aws:hirsute	eq	5.8.0.1010.12
linux-aws:hirsute	eq	5.8.0.1023.25+21.04.18
linux-gkeop:focal	eq	5.4.0.1010.13
linux-azure:groovy	eq	5.8.0.1004.4