CVE-2021-20261

Updated: 2022-09-27 17:25:47.041185

Description:

A race condition was found in the Linux kernels implementation of the floppy disk drive controller driver software. The impact of this issue is lessened by the fact that the default permissions on the floppy device (/dev/fd0) are restricted to root. If the permissions on the device have changed the impact changes greatly. In the default configuration root (or equivalent) permissions are required to attack this flaw.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x MEDIUM 4.4
CVSS Version 3.x MEDIUM 6.4

Status

OS name Project name Version Score Severity Status Errata Last updated
CentOS 6 ELS kernel 2.6.32 6.4 MEDIUM Not Vulnerable 2021-11-11 08:00:09
CloudLinux 6 ELS kernel 2.6.32 6.4 MEDIUM Ignored 2022-01-27 11:20:13
Oracle Linux 6 ELS kernel 2.6.32 6.4 MEDIUM Not Vulnerable 2022-11-30 10:09:54
Ubuntu 16.04 ELS linux-hwe 4.15.0 6.4 MEDIUM Ignored 2022-09-28 08:02:38
Ubuntu 16.04 ELS linux 4.4.0 6.4 MEDIUM Not Vulnerable 2021-11-10 02:45:21

Statement

Will not fix: low score