active/CVE-2021-35039


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16

Description: module: limit enabling module.sig_enforce
References:
 https://www.openwall.com/lists/oss-security/2021/07/06/3
Notes:
 carnil> Introduced by 7c9bc0983f89 ("ima: check signature enforcement
 carnil> against cmdline param instead of CONFIG") in 4.15-rc1 and only
 carnil> relevant with IMA.
Bugs:
upstream: released (5.13) [0c18f29aae7ce3dadd26d8ee3505d07cc982df75]
5.10-upstream-stable: released (5.10.47) [3051f230f19feb02dfe5b36794f8c883b576e184]
4.19-upstream-stable: released (4.19.196) [ff660863628fb144badcb3395cde7821c82c13a6]
4.9-upstream-stable: N/A "Vulnerable code introduced later"
sid: released (5.14.6-1)
5.10-bullseye-security: needed
4.19-buster-security: needed
4.9-stretch-security: N/A "Vulnerable code introduced later"