[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-MGASA-2021-0151":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T02:53:27.892Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":26,"duplicates":27,"related":28,"reserved_at":9,"published_at":35,"modified_at":36,"state":9,"summary":37,"references_raw":39,"kevs":76,"epss":9,"epss_history":77,"metrics":78,"affected":79},"MGASA-2021-0151","Updated kernel packages fix security issues\n\nThis kernel update is based on upstream 5.10.25 and fixes at least the\nfollowing security issues:\n\nUnprivileged BPF programs running on affected systems can bypass the\nprotection and execute speculatively out-of-bounds loads from any location\nwithin the kernel memory. This can be abused to extract contents of kernel\nmemory via side-channel (CVE-2020-27170).\n\nUnprivileged BPF programs running on affected 64-bit systems can exploit\nthis to execute speculatively out-of-bounds loads from 4GB window within\nthe kernel memory. This can be abused to extract contents of kernel memory\nvia side-channel (CVE-2020-27171).\n\nAn issue was discovered in the Linux kernel through 5.11.3. A kernel pointer\nleak can be used to determine the address of the iscsi_transport structure.\nWhen an iSCSI transport is registered with the iSCSI subsystem, the\ntransport's handle is available to unprivileged users via the sysfs file\nsystem, at /sys/class/iscsi_transport/$TRANSPORT_NAME/handle. When read, the\nshow_transport_handle function (in drivers/scsi/scsi_transport_iscsi.c) is\ncalled, which leaks the handle. This handle is actually the pointer to an\niscsi_transport struct in the kernel module's global variables\n(CVE-2021-27363).\n\nAn issue was discovered in the Linux kernel through 5.11.3. drivers/scsi/\nscsi_transport_iscsi.c is adversely affected by the ability of an\nunprivileged user to craft Netlink messages (CVE-2021-27364).\n\nAn issue was discovered in the Linux kernel through 5.11.3. Certain iSCSI\ndata structures do not have appropriate length constraints or checks, and\ncan exceed the PAGE_SIZE value. An unprivileged user can send a Netlink\nmessage that is associated with iSCSI, and has a length up to the maximum\nlength of a Netlink message (CVE-2021-27365).\n\nAn issue was discovered in the Linux kernel through 5.11.6.\nfastrpc_internal_invoke in drivers/misc/fastrpc.c does not prevent user\napplications from sending kernel RPC messages (CVE-2021-28375).\n\nIt also adds the following fixes:\n- arm(64): enable W1_MASTER_GPIO (mga#28596)\n- wireguard-tools have been updated to v1.0.20210315\n\nFor other upstream fixes, see the referenced changelogs.\n",null,[],[],[],[14,16,18,20,22,24],{"_key":15},"CVE-2020-27170",{"_key":17},"CVE-2020-27171",{"_key":19},"CVE-2021-27363",{"_key":21},"CVE-2021-27364",{"_key":23},"CVE-2021-27365",{"_key":25},"CVE-2021-28375",[],[],[29,30,31,32,33,34],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},"2021-03-22T17:17:19Z","2026-04-16T04:25:19.313317Z",{"cisa_kev":38,"cisa_ransomware":38,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[40,46,51,55,60,64,68,72],{"url":41,"sources":42,"tags":44},"https://advisories.mageia.org/MGASA-2021-0151.html",[43],"osv_mageia",[45],"Advisory",{"url":47,"sources":48,"tags":49},"https://bugs.mageia.org/show_bug.cgi?id=28610",[43],[50],"REPORT",{"url":52,"sources":53,"tags":54},"https://bugs.mageia.org/show_bug.cgi?id=28596",[43],[50],{"url":56,"sources":57,"tags":58},"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.21",[43],[50,59],"WEB",{"url":61,"sources":62,"tags":63},"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.22",[43],[50,59],{"url":65,"sources":66,"tags":67},"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.23",[43],[50,59],{"url":69,"sources":70,"tags":71},"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.24",[43],[50,59],{"url":73,"sources":74,"tags":75},"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.25",[43],[50,59],[],[],[],[80,92,98,104,110,115,120,125],{"ecosystem":81,"name":82,"vendor":83,"product":82,"cpe_part":9,"purl_type":84,"purl_namespace":83,"purl_name":82,"source":9,"versions":85},"Mageia","kernel","mageia","rpm",[86],{"version":87,"is_range":88,"range_type":89,"version_start":9,"version_start_type":9,"version_end":90,"version_end_type":91,"fixed_in":9},"lt5_10_25_1_mga7",true,"ecosystem","5.10.25-1.mga7","excluding",{"ecosystem":81,"name":93,"vendor":83,"product":93,"cpe_part":9,"purl_type":84,"purl_namespace":83,"purl_name":93,"source":9,"versions":94},"kmod-virtualbox",[95],{"version":96,"is_range":88,"range_type":89,"version_start":9,"version_start_type":9,"version_end":97,"version_end_type":91,"fixed_in":9},"lt6_1_18_11_mga7","6.1.18-11.mga7",{"ecosystem":81,"name":99,"vendor":83,"product":99,"cpe_part":9,"purl_type":84,"purl_namespace":83,"purl_name":99,"source":9,"versions":100},"kmod-xtables-addons",[101],{"version":102,"is_range":88,"range_type":89,"version_start":9,"version_start_type":9,"version_end":103,"version_end_type":91,"fixed_in":9},"lt3_13_17_mga7","3.13-17.mga7",{"ecosystem":81,"name":105,"vendor":83,"product":105,"cpe_part":9,"purl_type":84,"purl_namespace":83,"purl_name":105,"source":9,"versions":106},"wireguard-tools",[107],{"version":108,"is_range":88,"range_type":89,"version_start":9,"version_start_type":9,"version_end":109,"version_end_type":91,"fixed_in":9},"lt1_0_20210315_1_mga7","1.0.20210315-1.mga7",{"ecosystem":81,"name":82,"vendor":83,"product":82,"cpe_part":9,"purl_type":84,"purl_namespace":83,"purl_name":82,"source":9,"versions":111},[112],{"version":113,"is_range":88,"range_type":89,"version_start":9,"version_start_type":9,"version_end":114,"version_end_type":91,"fixed_in":9},"lt5_10_25_1_mga8","5.10.25-1.mga8",{"ecosystem":81,"name":93,"vendor":83,"product":93,"cpe_part":9,"purl_type":84,"purl_namespace":83,"purl_name":93,"source":9,"versions":116},[117],{"version":118,"is_range":88,"range_type":89,"version_start":9,"version_start_type":9,"version_end":119,"version_end_type":91,"fixed_in":9},"lt6_1_18_21_mga8","6.1.18-21.mga8",{"ecosystem":81,"name":99,"vendor":83,"product":99,"cpe_part":9,"purl_type":84,"purl_namespace":83,"purl_name":99,"source":9,"versions":121},[122],{"version":123,"is_range":88,"range_type":89,"version_start":9,"version_start_type":9,"version_end":124,"version_end_type":91,"fixed_in":9},"lt3_13_37_mga8","3.13-37.mga8",{"ecosystem":81,"name":105,"vendor":83,"product":105,"cpe_part":9,"purl_type":84,"purl_namespace":83,"purl_name":105,"source":9,"versions":126},[127],{"version":128,"is_range":88,"range_type":89,"version_start":9,"version_start_type":9,"version_end":129,"version_end_type":91,"fixed_in":9},"lt1_0_20210315_1_mga8","1.0.20210315-1.mga8"]