A flaw was found in the Linux kernel's implementation of RDMA over infiniband. An attacker with a privileged local account can leak kernel stack information when issuing commands to the /dev/infiniband/rdma_cm device node. While this access is unlikely to leak sensitive user information, it can be further used to defeat existing kernel protection mechanisms.
References
Link | Resource |
---|---|
https://bugzilla.redhat.com/show_bug.cgi?id=2019643 | Issue Tracking Patch Third Party Advisory |
https://lore.kernel.org/all/20220204100036.GA12348%40kili/ |
Configurations
History
07 Nov 2023, 03:38
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2023-03-27 21:15
Updated : 2024-02-28 20:13
NVD link : CVE-2021-3923
Mitre link : CVE-2021-3923
CVE.ORG link : CVE-2021-3923
JSON object : View
Products Affected
linux
- linux_kernel
fedoraproject
- fedora
redhat
- enterprise_linux
CWE