CVE-2021-42739

MITRE NVD CVE.ORG Print: PDF PDF

Summary

CVECVE-2021-42739
StatePUBLIC
Assigner[email protected]
Source PriorityCVE Program / NVD first with legacy fallback
Published2021-10-20 07:15:00 UTC
Updated2023-11-07 03:39:00 UTC
DescriptionA heap-based buffer overflow flaw was found in the Linux kernel FireDTV media card driver, where the user calls the CA_SEND_MSG ioctl. This flaw allows a local user of the host machine to crash the system or escalate privileges on the system. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.

Risk And Classification

Problem Types: CWE-787

NVD Known Affected Configurations (CPE 2.3)

TypeVendorProductVersionUpdateEditionLanguage
Operating System Debian Debian Linux 9.0 All All All
Operating System Fedoraproject Fedora 33 All All All
Operating System Fedoraproject Fedora 34 All All All
Operating System Fedoraproject Fedora 35 All All All
Operating System Linux Linux Kernel All All All All
Application Oracle Communications Cloud Native Core Binding Support Function 22.1.3 All All All
Application Oracle Communications Cloud Native Core Network Exposure Function 22.1.1 All All All
Application Oracle Communications Cloud Native Core Policy 22.2.0 All All All
Application Starwindsoftware Starwind San Nas v8r12 All All All
Application Starwindsoftware Starwind Virtual San v18r13 14338 All All
Application Starwindsoftware Starwind Virtual San v8r13 14338 All All

References

ReferenceSourceLinkTags
[SECURITY] [DLA 2941-1] linux-4.19 security update MLIST lists.debian.org
[PATCH] media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt() - Dan Carpenter MISC lore.kernel.org
[SECURITY] Fedora 33 Update: kernel-5.14.17-101.fc33 - package-announce - Fedora Mailing-Lists FEDORA lists.fedoraproject.org
CVE-2021-42739 Linux Kernel Vulnerability in NetApp Products | NetApp Product Security CONFIRM security.netapp.com
[SECURITY] Fedora 35 Update: kernel-5.14.17-301.fc35 - package-announce - Fedora Mailing-Lists FEDORA lists.fedoraproject.org
1951739 – (CVE-2021-42739) CVE-2021-42739 kernel: Heap buffer overflow in firedtv driver MISC bugzilla.redhat.com
oss-sec: Linux kernel: a heap buffer overflow in firedtv driver MISC seclists.org
kernel/git/torvalds/linux.git - Linux kernel source tree MISC git.kernel.org
Debian -- Security Information -- DSA-5096-1 linux DEBIAN www.debian.org
CVE-2021-42739 Linux kernel vulnerability in StarWind products MISC www.starwindsoftware.com
[SECURITY] [DLA 2843-1] linux security update MLIST lists.debian.org
Oracle Critical Patch Update Advisory - July 2022 N/A www.oracle.com
[PATCH] media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt() - Dan Carpenter lore.kernel.org
[SECURITY] Fedora 34 Update: kernel-5.14.17-201.fc34 - package-announce - Fedora Mailing-Lists FEDORA lists.fedoraproject.org
CVE Program record CVE.ORG www.cve.org canonical
NVD vulnerability detail NVD nvd.nist.gov canonical, analysis

Legacy QID Mappings

  • 159588 Oracle Enterprise Linux Security Update for kernel (ELSA-2022-0063)
  • 159825 Oracle Enterprise Linux Security Update for kernel (ELSA-2022-1988)
  • 160190 Oracle Enterprise Linux Security Update for unbreakable enterprise kernel (ELSA-2022-9969)
  • 178943 Debian Security Update for linux (DLA 2843-1)
  • 179117 Debian Security Update for linux (DSA 5096-1)
  • 179119 Debian Security Update for linux-4.19 (DLA 2941-1)
  • 180358 Debian Security Update for linux (CVE-2021-42739)
  • 198589 Ubuntu Security Notification for Linux kernel (OEM) Vulnerabilities (USN-5165-1)
  • 198616 Ubuntu Security Notification for Linux kernel (OEM) Vulnerabilities (USN-5207-1)
  • 198653 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-5265-1)
  • 198654 Ubuntu Security Notification for Linux kernel (GKE) Vulnerabilities (USN-5266-1)
  • 198655 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-5268-1)
  • 198656 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-5267-1)
  • 198666 Ubuntu Security Notification for Linux kernel (Raspberry Pi) Vulnerabilities (USN-5267-3)
  • 239989 Red Hat Update for kernel-rt (RHSA-2022:0065)
  • 239997 Red Hat Update for kernel (RHSA-2022:0063)
  • 240275 Red Hat Update for kernel-rt (RHSA-2022:1975)
  • 240298 Red Hat Update for kernel security (RHSA-2022:1988)
  • 257142 CentOS Security Update for kernel (CESA-2022:0063)
  • 257144 CentOS Security Update for kernel (CESA-2022:0063)
  • 282057 Fedora Security Update for kernel (FEDORA-2021-8364530ebf)
  • 282058 Fedora Security Update for kernel (FEDORA-2021-7de33b7016)
  • 282160 Fedora Security Update for kernel (FEDORA-2021-fdef34e26f)
  • 353242 Amazon Linux Security Advisory for kernel : ALAC2012-2022-036
  • 353243 Amazon Linux Security Advisory for kmod-mlx5 : ALAC2012-2022-037
  • 353244 Amazon Linux Security Advisory for kmod-sfc : ALAC2012-2022-038
  • 671219 EulerOS Security Update for kernel (EulerOS-SA-2022-1030)
  • 671225 EulerOS Security Update for kernel (EulerOS-SA-2022-1010)
  • 671252 EulerOS Security Update for kernel (EulerOS-SA-2022-1171)
  • 671282 EulerOS Security Update for kernel (EulerOS-SA-2022-1255)
  • 671304 EulerOS Security Update for kernel (EulerOS-SA-2022-1208)
  • 671344 EulerOS Security Update for kernel (EulerOS-SA-2022-1271)
  • 751336 OpenSUSE Security Update for the Linux Kernel (openSUSE-SU-2021:1460-1)
  • 751342 OpenSUSE Security Update for the Linux Kernel (openSUSE-SU-2021:3641-1)
  • 751346 OpenSUSE Security Update for the Linux Kernel (openSUSE-SU-2021:3655-1)
  • 751349 OpenSUSE Security Update for the Linux Kernel (openSUSE-SU-2021:1477-1)
  • 751353 OpenSUSE Security Update for the Linux Kernel (openSUSE-SU-2021:3675-1)
  • 751381 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2021:3748-1)
  • 751437 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2021:3876-1)
  • 751441 OpenSUSE Security Update for the Linux Kernel (openSUSE-SU-2021:3876-1)
  • 751451 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2021:3935-1)
  • 751476 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2021:3972-1)
  • 751687 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 40 for SLE 12 SP3) (SUSE-SU-2022:0328-1)
  • 751688 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 37 for SLE 12 SP3) (SUSE-SU-2022:0325-1)
  • 751689 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 39 for SLE 12 SP3) (SUSE-SU-2022:0327-1)
  • 753087 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 22 for SLE 15) (SUSE-SU-2022:0255-1)
  • 753118 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 3 for SLE 15 SP3) (SUSE-SU-2022:0295-1)
  • 753121 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 17 for SLE 15 SP2) (SUSE-SU-2022:0241-1)
  • 753155 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 24 for SLE 15) (SUSE-SU-2022:0237-1)
  • 753211 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 11 for SLE 15 SP2) (SUSE-SU-2022:0291-1)
  • 753257 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 23 for SLE 15) (SUSE-SU-2022:0243-1)
  • 753268 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 15 for SLE 15 SP2) (SUSE-SU-2022:0254-1)
  • 753272 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 16 for SLE 12 SP5) (SUSE-SU-2022:0234-1)
  • 753292 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 0 for SLE 15 SP3) (SUSE-SU-2022:0293-1)
  • 753329 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 19 for SLE 15 SP2) (SUSE-SU-2022:0238-1)
  • 753369 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 13 for SLE 15 SP2) (SUSE-SU-2022:0292-1)
  • 753385 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 4 for SLE 15 SP3) (SUSE-SU-2022:0257-1)
  • 753393 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 23 for SLE 12 SP5) (SUSE-SU-2022:0246-1)
  • 753408 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 15 for SLE 12 SP5) (SUSE-SU-2022:0263-1)
  • 753423 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 7 for SLE 15 SP3) (SUSE-SU-2022:0270-1)
  • 900425 Common Base Linux Mariner (CBL-Mariner) Security Update for kernel (6103)
  • 901605 Common Base Linux Mariner (CBL-Mariner) Security Update for kernel (6601-1)
  • 905786 Common Base Linux Mariner (CBL-Mariner) Security Update for kernel (6103-1)
  • 940517 AlmaLinux Security Update for kernel (ALSA-2022:1988)
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report