VDB

GCVE-VVD-MAGEIA-2021-459

GCVE-VVD-MAGEIA-2021-459
Advisory Published
Vulnetix · Advisory published October 4, 2021
This kernel update is based on upstream 5.10.70 and fixes at least the following security issues: Use-after-free vulnerability in the Linux kernel exploitable by a local attacker due to reuse of a DCCP socket with an attached dccps_hc_tx_ccid object as a listener after being released (CVE-2020-16119). oop_rw_iter in fs/io_uring.c in the Linux kernel 5.10 through 5.14.6 allows local users to gain privileges by using IORING_OP_PROVIDE_BUFFERS to trigger a free of a kernel buffer, as demonstrated by using /proc/<pid>/maps for exploitation (CVE-2021-41073). For other upstream fixes, see the referenced changelogs.
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiakernel0 (affected), 5.10.70-1.mga8 (unaffected)
Mageiakmod-virtualbox0 (affected), 6.1.26-1.6.mga8 (unaffected)
Mageiakmod-xtables-addons0 (affected), 3.18-1.24.mga8 (unaffected)

References

Updated kernel packages fix security vulnerabilities
advisory
Updated kernel packages fix security vulnerabilities
issue
Updated kernel packages fix security vulnerabilities
issue
Updated kernel packages fix security vulnerabilities
issue
Updated kernel packages fix security vulnerabilities
issue
Updated kernel packages fix security vulnerabilities
issue
Updated kernel packages fix security vulnerabilities
issue
Updated kernel packages fix security vulnerabilities
issue
Updated kernel packages fix security vulnerabilities
issue
Updated kernel packages fix security vulnerabilities
issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›