Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
virtuozzoVirtuozzoVZA-2021-040
HistoryAug 03, 2021 - 12:00 a.m.

[Important] [Security] New kernel 2.6.32-042stab146.1; Virtuozzo 6.0 Update 12 Hotfix 54 (6.0.12-3761)

2021-08-0300:00:00
docs.virtuozzo.com
73

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.017 Low

EPSS

Percentile

87.7%

JSON

This update provides a new kernel 2.6.32-042stab146.1 for Virtuozzo 6.0. It is based on the RHEL 6.10 kernel 2.6.32-754.41.2.el6 and inherits security and stability fixes from it. The new kernel also provides an internal stability fix.
Vulnerability id: CVE-2021-3347
Kernel: Use after free via PI futex state.

Vulnerability id: CVE-2019-11487
Kernel: Count overflow in FUSE request leading to use-after-free issues.

Vulnerability id: CVE-2020-12362
Kernel: Integer overflow in Intel® Graphics Drivers.

Vulnerability id: CVE-2021-27364
Kernel: out-of-bounds read in libiscsi module.

Vulnerability id: CVE-2021-27365
Kernel: heap buffer overflow in the iSCSI subsystem.

Vulnerability id: CVE-2020-29661
Kernel: locking issue in drivers/tty/tty_jobctrl.c can lead to an use-after-free.

Vulnerability id: CVE-2021-33909
Kernel: size_t-to-int conversion vulnerability in the filesystem layer.

Vulnerability id: CVE-2014-4508
Kernel: x86_32: BUG in syscall auditing.

Vulnerability id: CVE-2019-14896
Kernel: heap-based buffer overflow in lbs_ibss_join_existing function in drivers/net/wireless/marvell/libertas/cfg.c.

Vulnerability id: CVE-2021-20265
Kernel: increase slab leak leads to DoS.

Related

ibm 3
nessus 67
oraclelinux 15
redhat 31
osv 5
openvas 12
virtuozzo 4
cloudfoundry 1
ubuntu 3
centos 2
slackware 1
cloudlinux 1
photon 1
cve 6
debiancve 6
almalinux 2
cvelist 6
prion 5
veracode 4
zdt 1
nvd 6
ubuntucve 5
f5 2
cbl_mariner 2
redhatcve 4
fedora 1
cnvd 1
githubexploit 1
packetstorm 1
ibm
ibm
Security Bulletin: Publicly disclosed vulnerabilities from Kernel affect IBM Netezza Host Management
2021-09-23 03:53:04
Security Bulletin: Vulnerabilities in the Linux Kernel, Docker, Python, and NGINX affect IBM Spectrum Protect Plus
2021-12-10 18:57:01
Security Bulletin: Publicly disclosed vulnerability from Kernel affects IBM Netezza Host Management
2020-10-12 11:48:01
nessus
nessus
Oracle Linux 6 : kernel (ELSA-2021-9212)
2021-05-04 00:00:00
RHEL 6 : kernel (RHSA-2021:1288)
2022-02-09 00:00:00
NewStart CGSL MAIN 4.05 : kernel Multiple Vulnerabilities (NS-SA-2022-0002)
2022-05-10 00:00:00
oraclelinux
oraclelinux
kernel security update
2021-05-04 00:00:00
kernel security update
2021-08-30 00:00:00
Unbreakable Enterprise kernel-container security update
2021-03-18 00:00:00
redhat
redhat
(RHSA-2021:1288) Important: kernel security and bug fix update
2021-04-20 14:27:34
(RHSA-2021:2735) Important: kernel security update
2021-07-20 13:12:21
(RHSA-2021:1295) Important: kpatch-patch security update
2021-04-20 20:21:58
osv
osv
linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-4.15, linux-gcp, linux-gcp-4.15, linux-hwe, linux-kvm, linux-oracle, linux-raspi2, linux-snapdragon vulnerabilities
2021-03-29 16:52:26
linux, linux-lts-xenial vulnerabilities
2021-03-25 03:09:57
Important: kernel security, bug fix, and enhancement update
2021-04-06 13:33:17
openvas
openvas
Ubuntu: Security Advisory (USN-4883-1)
2021-03-20 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:1145-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:1075-1)
2021-04-19 00:00:00
virtuozzo
virtuozzo
[Important] [Security] Virtuozzo ReadyKernel patch 125.0 for Virtuozzo Hybrid Server 7.0, 7.5, Virtuozzo Infrastructure Platform 3.0, and Virtuozzo Hybrid Infrastructure 3.5, 4.0
2021-04-05 00:00:00
Virtuozzo ReadyKernel patch 124.1 for Virtuozzo Hybrid Server 7.0, 7.5, Virtuozzo Infrastructure Platform 3.0, and Virtuozzo Hybrid Infrastructure 3.5, 4.0
2021-03-19 00:00:00
[Important] [Security] Virtuozzo ReadyKernel patch 122.0 for Virtuozzo Hybrid Server 7.0, Virtuozzo Infrastructure Platform 3.0, and Virtuozzo Hybrid Infrastructure 3.5, 4.0
2021-02-15 00:00:00
cloudfoundry
cloudfoundry
USN-4883-1: Linux kernel vulnerabilities | Cloud Foundry
2021-04-14 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2021-03-25 00:00:00
Linux kernel vulnerabilities
2021-03-29 00:00:00
Linux kernel (Trusty HWE) vulnerabilities
2021-04-06 00:00:00
centos
centos
bpftool, kernel, perf, python security update
2021-04-10 17:09:38
kernel, perf, python security update
2020-11-09 13:13:23
slackware
slackware
[slackware-security] Slackware 14.2 kernel
2021-03-14 04:08:15
cloudlinux
cloudlinux
Fix of CVE: CVE-2021-27364, CVE-2021-27363, CVE-2021-27365
2021-09-21 22:01:04
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-1.0-0375
2021-03-27 00:00:00
cve
cve
CVE-2021-27366
2022-02-25 07:58:09
CVE-2020-29661
2020-12-09 17:15:31
CVE-2021-20265
2021-03-10 16:15:16
debiancve
debiancve
CVE-2021-20265
2021-03-10 16:15:16
CVE-2020-12362
2021-02-17 14:15:15
CVE-2019-14896
2019-11-27 09:15:11
almalinux
almalinux
Important: kernel security, bug fix, and enhancement update
2021-04-06 13:33:17
Important: linux-firmware security, bug fix, and enhancement update
2021-05-18 05:40:51
cvelist
cvelist
CVE-2021-20265
2021-03-10 15:30:18
CVE-2019-11487
2019-04-23 22:00:44
CVE-2020-12362
2021-02-17 00:00:00
prion
prion
Design/Logic Flaw
2021-03-10 16:15:00
Heap overflow
2019-11-27 09:15:00
Design/Logic Flaw
2019-04-23 22:29:00
veracode
veracode
Denial Of Service (DoS)
2021-03-17 04:37:36
Arbitrary Code Execution
2020-09-12 01:27:05
Denial Of Service (DoS)
2020-03-18 00:55:52
zdt
zdt
Linux TIOCSPGRP Broken Locking Exploit
2020-12-24 00:00:00
nvd
nvd
CVE-2021-20265
2021-03-10 16:15:16
CVE-2019-14896
2019-11-27 09:15:11
CVE-2020-12362
2021-02-17 14:15:15
ubuntucve
ubuntucve
CVE-2021-20265
2021-03-10 00:00:00
CVE-2014-4508
2014-06-23 00:00:00
CVE-2019-14896
2019-11-25 00:00:00
f5
f5
K14255532 : Linux kernel vulnerability CVE-2019-11487
2019-06-28 00:00:00
K80234002 : Linux kernel vulnerability CVE-2019-14896
2020-01-23 00:00:00
cbl_mariner
cbl_mariner
CVE-2021-27365 affecting package kernel for versions less than 5.10.78.1-1
2022-04-09 06:52:47
CVE-2020-29661 affecting package kernel 5.4.91-6
2021-01-29 07:40:05
redhatcve
redhatcve
CVE-2019-14896
2020-04-01 02:40:35
CVE-2019-11487
2020-04-07 17:14:51
CVE-2020-12362
2021-02-18 15:34:16
fedora
fedora
[SECURITY] Fedora 34 Update: kernel-tools-5.13.3-200.fc34
2021-07-22 01:15:35
cnvd
cnvd
Linux kernel input validation error vulnerability (CNVD-2021-53926)
2021-07-23 00:00:00
githubexploit
githubexploit
Exploit for Classic Buffer Overflow in Linux Linux Kernel
2021-07-21 18:22:55
packetstorm
packetstorm
Linux TIOCSPGRP Broken Locking
2020-12-22 00:00:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.017 Low

EPSS

Percentile

87.7%

JSON
Related for VZA-2021-040
ibm3nessus67oraclelinux15redhat31osv5openvas12virtuozzo4cloudfoundry1ubuntu3centos2slackware1cloudlinux1photon1cve6debiancve6almalinux2cvelist6prion5veracode4zdt1nvd6ubuntucve5f52cbl_mariner2redhatcve4fedora1cnvd1githubexploit1packetstorm1