[go: up one dir, main page]
More Web Proxy on the site http://driver.im/

CVE-2021-20269 log

Source
Severity Low
Remote No
Type Information disclosure
Description
A security issue was found in kexec-tools where vmcore-dmesg.txt extracted from the vmcore of a previous kernel panic is created world-readable. It is possible that this could be used to leak kernel internal information from a previous execution if it was output to the ring buffer or part of the panic backtrace. An unprivileged user with a local account can use this to extract kernel internal information resulting in an information leak.
Group Package Affected Fixed Severity Status Ticket
AVG-1673 kexec-tools 2.0.21-1 Low Vulnerable
References
https://www.openwall.com/lists/oss-security/2021/03/11/2
https://bugzilla.redhat.com/show_bug.cgi?id=1934261
https://access.redhat.com/security/cve/CVE-2021-20269