VDB

CVE-2021-0961

CVE-2021-0961 REJECTED

In quota_proc_write of xt_quota2.c, there is a possible way to read kernel memory due to uninitialized data. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-196046570References: Upstream kernel

EPSS 0.05% · 14.8th percentile

Risk Scores

EPSS Score
0.05%
14.8th percentile

Affected Products

VendorProductVersions
Ubuntu:Pro:20.04:LTSlinux-raspi20, 5.3.0-1007.8, 5.3.0-1014.16

Timeline

  • Dec 15, 2021 CVE Published
  • Dec 16, 2021 EPSS Score
  • Feb 4, 2022 EPSS Score
  • Feb 8, 2022 EPSS Score
  • Apr 4, 2022 EPSS Score
  • Jul 22, 2022 EPSS Score
  • Sep 15, 2022 EPSS Score
  • Nov 8, 2022 EPSS Score
  • Jan 1, 2023 EPSS Score
  • Feb 24, 2023 EPSS Score
  • Mar 7, 2023 EPSS Score
  • Apr 20, 2023 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›