CVE-2021-43267 – Linux Foundation / Linux kernel – Improper input validation
CVE-2021-43267 is an improper input validation vulnerability impacting Linux kernel versions 5.14.15 and earlier. An exploit was observed in open source and subsequently shared in the underground.
Summary:
CVE-2021-43267 is an improper input validation vulnerability impacting Linux kernel versions 5.14.15 and earlier. An exploit was observed in open source and subsequently shared in the underground.
PoC Links(if available):
haxx: Local PoC exploit for CVE-2021-43267 –
https://haxx.in/files/blasty-vs-tipc.c
Known Counter Measures:
The Linux Foundation addressed the vulnerability in Linux kernel versions 5.14.16.
Links to patches(if available)
https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.14.16