PT-2020-6447 · Linux+4 · Linux Kernel+4

Pedro Sampaio

Published

2020-01-16

Updated

2021-11-09

CVE-2021-3635

CVSS v2.0

4.9

Medium

Vector

AV:L/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.5-rc7

Description A flaw was found in the Linux kernel netfilter implementation. The issue is caused by a buffer overflow. A user with root (CAP SYS ADMIN) access can panic the system when issuing netfilter netflow commands. This can lead to a denial of service.

Recommendations For versions prior to 5.5-rc7, as a temporary workaround, consider restricting access to netfilter netflow commands until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

ALSA-2021:4356

ALT-PU-2020-1145

ALT-PU-2020-1251

ALT-PU-2020-1421

ALT-PU-2020-1450

ALT-PU-2020-1714

ALT-PU-2020-2164

ALT-PU-2021-1621

ALT-PU-2021-1656

ALT-PU-2021-1739

ALT-PU-2021-1862

ALT-PU-2021-1866

ALT-PU-2021-1870

BDU:2021-04847

CESA-2021_4140

CESA-2021_4356

CVE-2021-3635

RHSA-2021:4140

RHSA-2021:4356

RHSA-2021_4140

RHSA-2021_4356

Affected Products

Alt Linux

Almalinux

Centos

Linux Kernel

Red Hat

PT-2020-6447 · Linux+4 · Linux Kernel+4

CVE-2021-3635

Weakness Enumeration

Related Identifiers

Affected Products

References · 66