PT-2021-2548 · Linux+1 · Linux Kernel+1

Published

2021-04-06

Updated

2023-05-17

CVE-2021-30178

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.11.11

Description: The issue is related to a NULL pointer dereference in the synic get function in arch/x86/kvm/hyperv.c for certain accesses to the SynIC Hyper-V context. This could allow an attacker to cause a denial of service.

Recommendations: For Linux kernel versions prior to 5.11.11, update to a version 5.11.11 or later to resolve the issue. As a temporary workaround, consider restricting access to the synic get function in arch/x86/kvm/hyperv.c to minimize the risk of exploitation.

Fix

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

ALT-PU-2021-1609

ALT-PU-2021-1629

ALT-PU-2021-1869

ALT-PU-2021-1888

ALT-PU-2021-1896

ALT-PU-2022-1240

ALT-PU-2022-1419

ALT-PU-2022-1421

ALT-PU-2023-1814

AZL-6556

BDU:2021-01955

CVE-2021-30178

Affected Products

Alt Linux

Linux Kernel

PT-2021-2548 · Linux+1 · Linux Kernel+1

CVE-2021-30178

Weakness Enumeration

Related Identifiers

Affected Products

References · 15