VDB

GCVE-VVD-MAGEIA-2021-366

GCVE-VVD-MAGEIA-2021-366
Advisory Published
Vulnetix · Advisory published July 22, 2021
This kernel update is based on upstream 5.10.52 and fixes at least the following security issues: There is a race condition in net/can/bcm.c that can lead to local privilege escalation to root (CVE-2021-3609). A vulnerability was found in the Linux kernel. Missing size validations on inbound SCTP packets may allow the kernel to read uninitialized memory (CVE-2021-3655). fs/seq_file.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user (CVE-2021-33909). Other fixes in this update: - rtl8xxxu: disable interrupt_in transfer for 8188cu and 8192cu For other upstream fixes, see the referenced changelogs.
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiakmod-virtualbox0 (affected), 6.1.22-1.12.mga8 (unaffected)
Mageiakmod-xtables-addons0 (affected), 3.18-1.12.mga8 (unaffected)
Mageiakernel0 (affected), 5.10.52-1.mga8 (unaffected)

References

Updated kernel packages fix security vulnerabilities
advisory
Updated kernel packages fix security vulnerabilities
issue
Updated kernel packages fix security vulnerabilities
issue
Updated kernel packages fix security vulnerabilities
issue
Updated kernel packages fix security vulnerabilities
issue
Updated kernel packages fix security vulnerabilities
issue
Updated kernel packages fix security vulnerabilities
issue
Updated kernel packages fix security vulnerabilities
issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›