CVE-2021-3923

Updated: 2024-11-23 04:38:33.806347

Description:

A flaw was found in the Linux kernel's implementation of RDMA over infiniband. An attacker with a privileged local account can leak kernel stack information when issuing commands to the /dev/infiniband/rdma_cm device node. While this access is unlikely to leak sensitive user information, it can be further used to defeat existing kernel protection mechanisms.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0
CVSS Version 3.x LOW 2.3

Status

OS name Project name Version Score Severity Status Errata Last updated

Statement

AlmaLinux 9.2 ESU kernel 5.14.0 2.3 LOW Ignored 2023-11-08 04:07:19
AlmaLinux 9.2 FIPS kernel 5.14.0 2.3 LOW Ignored 2023-11-21 04:11:57
CentOS 6 ELS kernel 2.6.32 2.3 LOW Ignored 2023-04-04 08:45:23
CentOS 7 ELS kernel 3.10.0 2.3 LOW Released CLSA-2024:1720468480 2024-07-23 17:32:05
CentOS 8.4 ELS kernel 4.18.0 2.3 LOW Released CLSA-2024:1719932549 2024-07-02 11:29:42
CentOS 8.5 ELS kernel 4.18.0 2.3 LOW Released CLSA-2024:1719933179 2024-07-02 11:29:43
CentOS Stream 8 ELS kernel 4.18.0 2.3 LOW Ignored 2024-05-24 14:19:05
CloudLinux 6 ELS kernel 2.6.32 2.3 LOW Ignored 2023-04-04 08:45:24
CloudLinux 7 ELS kernel 3.10.0 2.3 LOW Ignored 2024-09-06 12:12:18
Oracle Linux 6 ELS kernel 2.6.32 2.3 LOW Ignored 2023-04-04 08:45:23
Total: 13