Main Vulnerability Database SB2021123021

SB2021123021 - Anolis OS update for kernel(ANCK)4.19

Published: December 30, 2021 Updated: March 28, 2025

Security Bulletin ID SB2021123021

Severity

Medium

Patch available

YES

Number of vulnerabilities 13

Exploitation vector Remote access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 13 secuirty vulnerabilities.

1) Memory leak (CVE-ID: CVE-2019-18808)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the "ccp_run_sha_cmd()" function in drivers/crypto/ccp/ccp-ops.c in the Linux kernel through 5.3.9 allows a local user to cause a denial of service (memory consumption).

2) Memory leak (CVE-ID: CVE-2019-19077)

The vulnerability allows a local attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the "bnxt_re_create_srq()" function in "drivers/infiniband/hw/bnxt_re/ib_verbs.c" file. A local attacker can cause a denial of service condition (memory consumption) by triggering "ib_copy_to_udata()" failures.

3) Null pointer dereference (CVE-ID: CVE-2019-19462)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

relay_open in kernel/relay.c in the Linux kernel through 5.4.1 allows local users to cause a denial of service (such as relay blockage) by triggering a NULL alloc_percpu result.

4) Use of uninitialized resource (CVE-ID: CVE-2019-19947)

The vulnerability allows a local non-authenticated attacker to gain access to sensitive information.

In the Linux kernel through 5.4.6, there are information leaks of uninitialized memory to a USB device in the drivers/net/can/usb/kvaser_usb/kvaser_usb_leaf.c driver, aka CID-da2311a6385c.

5) NULL pointer dereference (CVE-ID: CVE-2019-19965)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the sas_get_port_device() function in drivers/scsi/libsas/sas_discover.c. A local user can perform a denial of service (DoS) attack.

6) Memory leak (CVE-ID: CVE-2019-20096)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within __feat_register_sp() in net/dccp/feat.c, which may cause denial of service, aka CID-1d3ff0950e2b. A remote attacker can perform a denial of service attack.

7) Use of uninitialized resource (CVE-ID: CVE-2020-10732)

The vulnerability allows a local user to read memory contents or crash the application.

The vulnerability exists due to use of uninitialized resource error within the fill_thread_core_info() function in fs/binfmt_elf.c. A local user can read memory contents or crash the application.

8) Improper Handling of Exceptional Conditions (CVE-ID: CVE-2020-12888)

The vulnerability allows a local user to perform a deinal of service (DoS) attack.

The vulnerability exists due to the VFIO PCI driver mishandles attempts to access disabled memory space. A local user can cause a denial of service condition on the target system.

9) Integer overflow (CVE-ID: CVE-2020-13974)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to integer overflow within drivers/tty/vt/keyboard.c if k_ascii is called several times in a row. A local user can trigger an integer overflow and execute arbitrary code with elevated privileges.

10) Use of insufficiently random values (CVE-ID: CVE-2020-16166)

The vulnerability allows a remote non-authenticated attacker to gain access to sensitive information.

The vulnerability exists due to use of insufficiently random values error within the prandom_state_selftest() function in lib/random32.c, within the update_process_times() function in kernel/time/timer.c, within the add_interrupt_randomness() function in drivers/char/random.c. A remote non-authenticated attacker can gain access to sensitive information.

11) Use-after-free (CVE-ID: CVE-2020-8647)

The vulnerability allows a local authenticated user to #BASIC_IMPACT#.

There is a use-after-free vulnerability in the Linux kernel through 5.5.2 in the vc_do_resize function in drivers/tty/vt/vt.c.

12) Use-after-free (CVE-ID: CVE-2020-8648)

The vulnerability allows a local authenticated user to #BASIC_IMPACT#.

There is a use-after-free vulnerability in the Linux kernel through 5.5.2 in the n_tty_receive_buf_common function in drivers/tty/n_tty.c.

13) Use-after-free (CVE-ID: CVE-2020-8649)

The vulnerability allows a local authenticated user to #BASIC_IMPACT#.

There is a use-after-free vulnerability in the Linux kernel through 5.5.2 in the vgacon_invert_region function in drivers/video/console/vgacon.c.

Remediation

Install update from vendor's website.

References

https://anas.openanolis.cn/errata/detail/ANSA-2021:0213

Vulnerable Software

Anolis OS: 8
python3-perf: before 4.19.91-23.4
perf: before 4.19.91-23.4
kernel-tools-libs-devel: before 4.19.91-23.4
kernel-tools-libs: before 4.19.91-23.4
kernel-tools: before 4.19.91-23.4
kernel-modules-extra: before 4.19.91-23.4
kernel-modules: before 4.19.91-23.4
kernel-headers: before 4.19.91-23.4
kernel-devel: before 4.19.91-23.4
kernel-debug-modules-extra: before 4.19.91-23.4
kernel-debug-modules: before 4.19.91-23.4
kernel-debug-devel: before 4.19.91-23.4
kernel-debug-core: before 4.19.91-23.4
kernel-debug: before 4.19.91-23.4
kernel-core: before 4.19.91-23.4
kernel: before 4.19.91-23.4
bpftool: before 4.19.91-23.4

SB2021123021 - Anolis OS update for kernel(ANCK)4.19

Breakdown by Severity

Description

Remediation

References

Please verify you're human