SB20240620175 - Out-of-bounds read in Linux kernel isdn capi driver
Published: June 20, 2024 Updated: May 13, 2025
Security Bulletin ID
SB20240620175
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Out-of-bounds read (CVE-ID: CVE-2021-4439)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the detach_capi_ctr() function in drivers/isdn/capi/kcapi.c. A local user can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/e8b8de17e164c9f1b7777f1c6f99d05539000036
- https://git.kernel.org/stable/c/24219a977bfe3d658687e45615c70998acdbac5a
- https://git.kernel.org/stable/c/9b6b2db77bc3121fe435f1d4b56e34de443bec75
- https://git.kernel.org/stable/c/7d91adc0ccb060ce564103315189466eb822cc6a
- https://git.kernel.org/stable/c/285e9210b1fab96a11c0be3ed5cea9dd48b6ac54
- https://git.kernel.org/stable/c/7f221ccbee4ec662e2292d490a43ce6c314c4594
- https://git.kernel.org/stable/c/cc20226e218a2375d50dd9ac14fb4121b43375ff
- https://git.kernel.org/stable/c/1f3e2e97c003f80c4b087092b225c8787ff91e4d
- https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.253
- https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.214
- https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.290
- https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.288
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.76
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.14.15
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.4.156