CVE-2021-33630

MEDIUM

openEuler kernel <4.19.90-2401.3 - NULL Pointer Dereference

Title source: llm

Description

NULL Pointer Dereference vulnerability in openEuler kernel on Linux (network modules) allows Pointer Manipulation. This vulnerability is associated with program files net/sched/sch_cbs.C. This issue affects openEuler kernel: from 4.19.90 before 4.19.90-2401.3.

References (15)

[Mailing List] http://www.openwall.com/lists/oss-security/2024/01/30/10

[Release Notes] https://gitee.com/src-openeuler/kernel/pulls/1389

[Mailing List] https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html

[Vendor Advisory] https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1030

[Vendor Advisory] https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1031

[Patch] https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=3e8b9bfa110896f95d602d8c98d5f9d67e41d78c

[Mailing List] http://www.openwall.com/lists/oss-security/2024/01/30/3

[Mailing List] http://www.openwall.com/lists/oss-security/2024/01/30/4

[Mailing List] http://www.openwall.com/lists/oss-security/2024/01/30/5

[Mailing List] http://www.openwall.com/lists/oss-security/2024/01/30/9

[Mailing List] http://www.openwall.com/lists/oss-security/2024/01/31/2

[Mailing List] http://www.openwall.com/lists/oss-security/2024/01/31/3

[Mailing List] http://www.openwall.com/lists/oss-security/2024/02/02/6

[Mailing List] http://www.openwall.com/lists/oss-security/2024/02/02/9

[Mailing List] http://www.openwall.com/lists/oss-security/2024/02/03/1

Scores

CVSS v3 5.5

EPSS 0.0008

EPSS Percentile 22.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Classification

CWE

CWE-476

Status published

Affected Products (1)

openatom/openeuler < 4.19.90-2401.3

Timeline

Published Jan 18, 2024

Tracked Since Feb 18, 2026