PT-2021-4244 · Linux+5 · Linux Kernel+5

Published

2021-05-21

Updated

2023-05-17

CVE-2021-38205

CVSS v3.1

3.3

Low

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.13.3

Description The issue is related to the drivers/net/ethernet/xilinx/xilinx emaclite.c component in the Linux kernel, which makes it easier for attackers to defeat an ASLR protection mechanism. This is because it prints a kernel pointer, specifically the real IOMEM pointer.

Recommendations For Linux kernel versions prior to 5.13.3, update to version 5.13.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the vulnerable component until a patch is available.

Fix

Access of Uninitialized Pointer

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-824

Related Identifiers

ALT-PU-2021-2284

ALT-PU-2021-2486

ALT-PU-2021-2616

ALT-PU-2021-3563

ALT-PU-2021-3573

ALT-PU-2022-1240

ALT-PU-2022-1419

ALT-PU-2022-1421

ALT-PU-2023-1814

AZL-6589

BDU:2021-04852

CVE-2021-38205

DLA-2785-1

DLA-2843-1

MGASA-2021-0409

MGASA-2021-0410

OESA-2021-1318

OPENSUSE-SU-2021:1271-1

OPENSUSE-SU-2021:3179-1

OPENSUSE-SU-2021:3205-1

OPENSUSE-SU-2021_1271-1

OPENSUSE-SU-2021_3179-1

OPENSUSE-SU-2021_3205-1

SUSE-SU-2021:3177-1

SUSE-SU-2021:3178-1

SUSE-SU-2021:3179-1

SUSE-SU-2021:3205-1

SUSE-SU-2021:3205-2

SUSE-SU-2021:3207-1

USN-5092-1

USN-5092-2

USN-5092-3

USN-5094-1

USN-5094-2

USN-5096-1

USN-5115-1

USN-5116-1

USN-5116-2

Affected Products

Alt Linux

Astra Linux

Linuxmint

Linux Kernel

Suse

Ubuntu

PT-2021-4244 · Linux+5 · Linux Kernel+5

CVE-2021-38205

Weakness Enumeration

Related Identifiers

Affected Products

References · 268