CVE-2021-3501 - Redhat Enterprise Linux and Linux Linux Kernel

Critical 7.1

A flaw was found in the Linux kernel in versions before 5.12. The value of internal.ndata, in the KVM API, is mapped to an array index, which can be updated by a user process at anytime which could lead to an out-of-bounds write. The highest threat from this vulnerability is to data integrity and system availability.

Affected software

Redhat Enterprise Linux

Linux Linux Kernel

Reference links

Get alerted to vulnerabilities in your software

CVE alerts, vulnerability alerts, latest versions and news matched to your software stack.