CVE-2021-29646
Summary
| CVE | CVE-2021-29646 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2021-03-30 21:15:00 UTC |
| Updated | 2023-11-07 03:32:00 UTC |
| Description | An issue was discovered in the Linux kernel before 5.11.11. tipc_nl_retrieve_key in net/tipc/node.c does not properly validate certain data sizes, aka CID-0217ed2848e8. |
Risk And Classification
Problem Types: NVD-CWE-noinfo
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Operating System | Fedoraproject | Fedora | 32 | All | All | All |
| Operating System | Fedoraproject | Fedora | 33 | All | All | All |
| Operating System | Fedoraproject | Fedora | 34 | All | All | All |
| Operating System | Linux | Linux Kernel | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| [SECURITY] Fedora 32 Update: kernel-5.11.11-100.fc32 - package-announce - Fedora Mailing-Lists | FEDORA | lists.fedoraproject.org | |
| kernel/git/torvalds/linux.git - Linux kernel source tree | MISC | git.kernel.org | |
| [SECURITY] Fedora 34 Update: kernel-headers-5.11.11-300.fc34 - package-announce - Fedora Mailing-Lists | lists.fedoraproject.org | ||
| [SECURITY] Fedora 33 Update: kernel-5.11.11-200.fc33 - package-announce - Fedora Mailing-Lists | FEDORA | lists.fedoraproject.org | |
| [SECURITY] Fedora 32 Update: kernel-5.11.11-100.fc32 - package-announce - Fedora Mailing-Lists | lists.fedoraproject.org | ||
| [SECURITY] Fedora 34 Update: kernel-headers-5.11.11-300.fc34 - package-announce - Fedora Mailing-Lists | FEDORA | lists.fedoraproject.org | |
| [SECURITY] Fedora 33 Update: kernel-5.11.11-200.fc33 - package-announce - Fedora Mailing-Lists | lists.fedoraproject.org | ||
| cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.11.11 | MISC | cdn.kernel.org | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 159492 Oracle Enterprise Linux Security Update for kernel (ELSA-2021-4356)
- 179689 Debian Security Update for linux (CVE-2021-29646)
- 198364 Ubuntu Security Notification for Linux kernel (OEM) vulnerabilities (USN-4947-1)
- 198365 Ubuntu Security Notification for Linux kernel (OEM) vulnerabilities (USN-4948-1)
- 198366 Ubuntu Security Notification for Linux kernel vulnerabilities (USN-4949-1)
- 239816 Red Hat Update for kernel security (RHSA-2021:4356)
- 239879 Red Hat Update for kernel-rt (RHSA-2021:4140)
- 281064 Fedora Security Update for kernel, kernel-headers (FEDORA-2021-2306e89112)
- 281065 Fedora Security Update for kernel, kernel-headers (FEDORA-2021-6b0f287b8b)
- 281395 Fedora Security Update for kernel (FEDORA-2021-41fb54ae9f)
- 281396 Fedora Security Update for kernel (FEDORA-2021-2306e89112)
- 281397 Fedora Security Update for kernel (FEDORA-2021-6b0f287b8b)
- 610372 Google Pixel Android October 2021 Security Patch Missing
- 900100 CBL-Mariner Linux Security Update for kernel 5.10.52.1
- 900305 CBL-Mariner Linux Security Update for kernel 5.10.57.1
- 900320 CBL-Mariner Linux Security Update for kernel 5.10.60.1
- 901934 Common Base Linux Mariner (CBL-Mariner) Security Update for kernel (6549-1)
- 903291 Common Base Linux Mariner (CBL-Mariner) Security Update for kernel (4034)
- 905741 Common Base Linux Mariner (CBL-Mariner) Security Update for kernel (4034-1)
- 940265 AlmaLinux Security Update for kernel (ALSA-2021:4356)