QwikSec

Security Database

CVE

CWE

Training

CVE-2021-26930

Published: Feb 17, 2021

Modified: Aug 3, 2024

PUBLISHED

Description

An issue was discovered in the Linux kernel 3.11 through 5.10.16, as used by Xen. To service requests to the PV backend, the driver maps grant references provided by the frontend. In this process, errors may be encountered. In one case, an error encountered earlier might be discarded by later processing, resulting in the caller assuming successful mapping, and hence subsequent operations trying to access space that wasn't mapped. In another case, internal state would be insufficiently updated, preventing safe recovery from the error. This affects drivers/block/xen-blkback/blkback.c.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://xenbits.xen.org/xsa/advisory-365.html

FEDORA-2021-8d45d297c6

vendor-advisory

FEDORA-2021-7143aca8cb

vendor-advisory

[debian-lts-announce] 20210309 [SECURITY] [DLA 2586-1] linux security update

mailing-list

https://security.netapp.com/advisory/ntap-20210326-0001/

[debian-lts-announce] 20210330 [SECURITY] [DLA 2610-1] linux-4.19 security update

mailing-list

https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=871997bc9e423f05c7da7c9178e62dde5df2a7f8

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.