Back to search
CVE-2021-20292
Published: May 28, 2021
Modified: Aug 3, 2024
PUBLISHED
Description
There is a flaw reported in the Linux kernel in versions before 5.9 in drivers/gpu/drm/nouveau/nouveau_sgdma.c in nouveau_sgdma_create_ttm in Nouveau DRM subsystem. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker with a local account with a root privilege, can leverage this vulnerability to escalate privileges and execute code in the context of the kernel.
| Vendor | Product | Versions |
|---|---|---|
n/a | kernel | affected Kernel 5.9 |
Weaknesses (CWE)
References
https://bugzilla.redhat.com/show_bug.cgi?id=1939686
x_refsource_MISC
[debian-lts-announce] 20210623 [SECURITY] [DLA 2689-1] linux security update
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now