Description
The firewire subsystem in the Linux kernel through 5.14.13 has a buffer overflow related to drivers/media/firewire/firedtv-avc.c and drivers/media/firewire/firedtv-ci.c, because avc_ca_pmt mishandles bounds checking.
Related CPE's
o
fedoraproject
fedora
References
https://bugzilla.redhat.com/show_bug.cgi?id=1951739
https://www.oracle.com/security-alerts/cpujul2022.html
https://www.starwindsoftware.com/security/sw-20220804-0001/
https://bugzilla.redhat.com/show_bug.cgi?id=1951739
https://www.oracle.com/security-alerts/cpujul2022.html
https://www.starwindsoftware.com/security/sw-20220804-0001/
CVSS impact metrics
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
6.7 · Medium
Information
Source identifier
Vulnerability status
Modified
Published
2021-10-20T05:15:09.140Z
4 years agoLast modified
2024-11-21T05:28:04.663Z
1 year ago