PT-2019-6417 · Openeuler+2 · Openeuler Kernel+2

Vinicius Costa Gomes

Published

2019-09-26

Updated

2025-04-02

CVE-2021-33630

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions openEuler kernel versions 4.19.90 through 4.19.90-2401.2

Description The issue is related to a NULL Pointer Dereference vulnerability in the openEuler kernel on Linux, specifically in network modules, allowing Pointer Manipulation. This vulnerability is associated with program files net/sched/sch cbs.C. The vulnerability may allow an attacker to cause a denial of service.

Recommendations To resolve the issue, update the openEuler kernel to version 4.19.90-2401.3 or later. As a temporary workaround, consider disabling the network modules associated with the vulnerable program files net/sched/sch cbs.C until a patch is available.

Fix

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

BDU:2024-01035

CESA-2020_1567

CESA-2020_1769

CVE-2021-33630

DLA-3840-1

OESA-2024-1030

OESA-2024-1031

RHSA-2020:1567

RHSA-2020:1769

RHSA-2020_1567

RHSA-2020_1769

Affected Products

Centos

Red Hat

Openeuler Kernel

PT-2019-6417 · Openeuler+2 · Openeuler Kernel+2

CVE-2021-33630

Weakness Enumeration

Related Identifiers

Affected Products

References · 50