summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorSalvatore Bonaccorso <carnil@debian.org>2021-09-24 21:27:42 +0200
committerSalvatore Bonaccorso <carnil@debian.org>2021-09-24 21:27:42 +0200
commit39143c636eafaa20018dad81bcb2068ebe6ebef1 (patch)
tree2fedd62c40b1ce7222cd641e6218a282e03a4ab5
parent0d437eb8c9c6595544b6fc3bd465a6eb966c0ef9 (diff)
5.10.46-5 DSA: Improve CVE descriptions
-rw-r--r--dsa-texts/5.10.46-516
1 files changed, 8 insertions, 8 deletions
diff --git a/dsa-texts/5.10.46-5 b/dsa-texts/5.10.46-5
index aaa73696..6da87808 100644
--- a/dsa-texts/5.10.46-5
+++ b/dsa-texts/5.10.46-5
@@ -25,7 +25,7 @@ CVE-2021-3653
Maxim Levitsky discovered a flaw in the KVM hypervisor
implementation for AMD processors in the Linux kernel. Missing
- alidation of the `int_ctl` VMCB field could allow a malicious L1
+ validation of the `int_ctl` VMCB field could allow a malicious L1
guest to enable AVIC support (Advanced Virtual Interrupt Controller)
for the L2 guest. The L2 guest can take advantage of this flaw to
write to a limited but still relatively large subset of the host
@@ -62,12 +62,12 @@ CVE-2021-3739
CVE-2021-3743
An out-of-bounds memory read flaw was discovered in the Qualcomm IPC
- router protocol, allowing to cause a denial of service or
- information leak.
+ router protocol implementation, allowing to cause a denial of
+ service or information leak.
CVE-2021-3753
- Minh Yuan reported race condition flaw in the vt_k_ioctl in
+ Minh Yuan reported a race condition flaw in the vt_k_ioctl in
drivers/tty/vt/vt_ioctl.c, which may cause an out of bounds
read in vt.
@@ -85,14 +85,14 @@ CVE-2021-38160
CVE-2021-38166
An integer overflow flaw in the BPF subsystem could allow a local
- attacker able to cause a denial of service or potentially the
- execution of arbitrary code. This flaw is mitigated by default in
- Debian as unprivileged calls to bpf() are disabled.
+ attacker to cause a denial of service or potentially the execution
+ of arbitrary code. This flaw is mitigated by default in Debian as
+ unprivileged calls to bpf() are disabled.
CVE-2021-38199
Michael Wakabayashi reported a flaw in the NFSv4 client
- subsystem where incorrect connection-setup ordering allows
+ implementation, where incorrect connection-setup ordering allows
operations of a remote NFSv4 server to cause a denial of service
(hanging of mounts).

© 2014-2024 Faster IT GmbH | imprint | privacy policy