retired/CVE-2021-0920


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15

Description: af_unix: fix garbage collect vs MSG_PEEK
References:
 https://source.android.com/security/bulletin/2021-11-01
 https://googleprojectzero.blogspot.com/2022/08/the-quantum-state-of-linux-kernel.html
 https://googleprojectzero.github.io/0days-in-the-wild//0day-RCAs/2021/CVE-2021-0920.html
Notes:
Bugs:
upstream: released (5.14-rc4) [cbcf01128d0a92e131bd09f1688fe032480b65ca]
5.10-upstream-stable: released (5.10.55) [93c5951e0ce137e994237c19cd75a7caa1f80543]
4.19-upstream-stable: released (4.19.200) [1dabafa9f61118b1377fde424d9a94bf8dbf2813]
4.9-upstream-stable: released (4.9.278) [a805a7bd94644207d762d9c287078fecfcf52b3e]
sid: released (5.14.6-1)
5.10-bullseye-security: released (5.10.70-1)
4.19-buster-security: released (4.19.208-1)
4.9-stretch-security: released (4.9.290-1)