Security Advisory

CVE-2021-3501

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-05-05 22:31:28

Last updated 2024-08-03 16:53:17

Assigner redhat

State PUBLISHED

Description

A flaw was found in the Linux kernel in versions before 5.12. The value of internal.ndata, in the KVM API, is mapped to an array index, which can be updated by a user process at anytime which could lead to an out-of-bounds write. The highest threat from this vulnerability is to data integrity and system availability.

← Browse all CVEs View on cve.org ↗