Rapid7 Vulnerability & Exploit Database

Red Hat: CVE-2021-47055: kernel: mtd: require write permissions for locking and badblock ioctls (Multiple Advisories)

Free InsightVM Trial No Credit Card Necessary

2024 Attack Intel Report Latest research by Rapid7 Labs

Back to Search

Red Hat: CVE-2021-47055: kernel: mtd: require write permissions for locking and badblock ioctls (Multiple Advisories)

Severity

CVSS

(AV:L/AC:L/Au:S/C:N/I:N/A:N)

Published

02/29/2024

Created

06/07/2024

Added

06/06/2024

Modified

06/06/2024

Description

In the Linux kernel, the following vulnerability has been resolved: mtd: require write permissions for locking and badblock ioctls MEMLOCK, MEMUNLOCK and OTPLOCK modify protection bits. Thus require write permission. Depending on the hardware MEMLOCK might even be write-once, e.g. for SPI-NOR flashes with their WP# tied to GND. OTPLOCK is always write-once. MEMSETBADBLOCK modifies the bad block table.

Solution(s)

redhat-upgrade-kernel
redhat-upgrade-kernel-rt

References

CVE-2021-47055
RHSA-2024:3618
RHSA-2024:3627

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;

Rapid7 Vulnerability & Exploit Database

Red Hat: CVE-2021-47055: kernel: mtd: require write permissions for locking and badblock ioctls (Multiple Advisories)

Red Hat: CVE-2021-47055: kernel: mtd: require write permissions for locking and badblock ioctls (Multiple Advisories)

Description

Solution(s)

References

Success! Thank you for submission. We will be in touch shortly.

Oops! There was a problem in submission. Please try again.

Submit your information and we will get in touch with you.