VDB

GCVE-VVD-MAGEIA-2021-398

GCVE-VVD-MAGEIA-2021-398
Advisory Published
Vulnetix · Advisory published August 7, 2021
This kernel-linus update is based on upstream 5.10.56 and fixes at least the following security issues: In the Linux kernel through 5.13.7, an unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because the protection mechanism neglects the possibility of uninitialized memory locations on the BPF stack (CVE-2021-34556). In the Linux kernel through 5.13.7, an unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because a certain preempting store operation does not necessarily occur before a store operation that has an attacker-controlled value (CVE-2021-35477). For other upstream fixes, see the referenced changelogs.
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiakernel-linus0 (affected), 5.10.56-1.mga8 (unaffected)

References

Updated kernel-linus packages fix security vulnerabilities
advisory
Updated kernel-linus packages fix security vulnerabilities
issue
Updated kernel-linus packages fix security vulnerabilities
issue
Updated kernel-linus packages fix security vulnerabilities
issue
Updated kernel-linus packages fix security vulnerabilities
issue
Updated kernel-linus packages fix security vulnerabilities
issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›