CVE-2021-47055

Updated: 2025-01-09 21:48:34.416077

Description:

In the Linux kernel, the following vulnerability has been resolved: mtd: require write permissions for locking and badblock ioctls MEMLOCK, MEMUNLOCK and OTPLOCK modify protection bits. Thus require write permission. Depending on the hardware MEMLOCK might even be write-once, e.g. for SPI-NOR flashes with their WP# tied to GND. OTPLOCK is always write-once. MEMSETBADBLOCK modifies the bad block table.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0
CVSS Version 3.x MEDIUM 5.5

Status

OS name Project name Version Score Severity Status Errata Last updated

Statement

AlmaLinux 9.2 ESU kernel 5.14.0 5.5 MEDIUM Ignored 2024-06-24 11:20:45
AlmaLinux 9.2 FIPS kernel 5.14.0 5.5 MEDIUM Ignored 2024-06-24 11:20:45
CentOS 6 ELS kernel 2.6.32 5.5 MEDIUM Ignored 2024-06-24 10:10:47
CentOS 7 ELS kernel 3.10.0 5.5 MEDIUM Ignored 2024-06-24 11:20:44
CentOS 8.4 ELS kernel 4.18.0 5.5 MEDIUM Ignored 2024-06-24 11:20:45
CentOS 8.5 ELS kernel 4.18.0 5.5 MEDIUM Ignored 2024-06-24 11:20:45
CentOS Stream 8 ELS kernel 4.18.0 5.5 MEDIUM Already Fixed 2024-06-09 14:19:14
CloudLinux 6 ELS kernel 2.6.32 5.5 MEDIUM Ignored 2024-06-24 10:10:47
Oracle Linux 6 ELS kernel 2.6.32 5.5 MEDIUM Ignored 2024-06-24 10:10:46
Ubuntu 16.04 ELS linux-hwe 4.15.0 5.5 MEDIUM Already Fixed 2024-12-11 16:21:25
Total: 11