CVE
CVE-2021-27365
| CVE ID |
CVE-2021-27365
|
|---|---|
| CVSS Score |
7.8
|
| Operating System | |
| Affected Versions |
CentOS 6
|
| Patched Versions |
2.6.32-754.35.1_ol012.el6
|
| Patch Date |
|
Additional Information
NVD Entry: https://nvd.nist.gov/vuln/detail/CVE-2021-27365
An issue was discovered in the Linux kernel through 5.11.3. Certain iSCSI data structures do not have appropriate length constraints or checks, and can exceed the PAGE_SIZE value. An unprivileged user can send a Netlink message that is associated with iSCSI, and has a length up to the maximum length of a Netlink message.