Insufficient data validation in waitid allowed an user to escape sandboxes on Linux.
References
Link | Resource |
---|---|
https://crbug.com/772848 | Vendor Advisory |
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=96ca579a1ecc943b75beba58bebb0356f6cc4b51 | Patch Vendor Advisory |
https://security.netapp.com/advisory/ntap-20211223-0003/ | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
Configuration 8 (hide)
AND |
|
Configuration 9 (hide)
AND |
|
History
18 Apr 2022, 18:03
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:h:netapp:h700e:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h410s_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h300e_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h300s_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h500e:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h300e:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h700e_firmware:-:*:*:*:*:*:*:* cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h500e_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h500s_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h700s_firmware:-:*:*:*:*:*:*:* |
|
References | (CONFIRM) https://security.netapp.com/advisory/ntap-20211223-0003/ - Third Party Advisory | |
First Time |
Netapp h300e
Netapp h410s Netapp h410s Firmware Netapp h700s Netapp Netapp h500e Firmware Netapp h700e Firmware Netapp h300e Firmware Netapp h500s Firmware Netapp cloud Backup Netapp h300s Firmware Netapp h700s Firmware Netapp h500e Netapp h700e Netapp h500s Netapp h300s |
23 Dec 2021, 13:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
04 Nov 2021, 16:45
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=96ca579a1ecc943b75beba58bebb0356f6cc4b51 - Patch, Vendor Advisory | |
References | (MISC) https://crbug.com/772848 - Vendor Advisory | |
CPE | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : 4.6
v3 : 8.8 |
CWE | CWE-20 |
02 Nov 2021, 23:13
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-11-02 22:15
Updated : 2023-12-10 14:09
NVD link : CVE-2017-5123
Mitre link : CVE-2017-5123
CVE.ORG link : CVE-2017-5123
JSON object : View
Products Affected
netapp
- h500s
- h700e
- h700s_firmware
- h410s
- h500s_firmware
- h300e_firmware
- h300s
- h700s
- h700e_firmware
- h300s_firmware
- cloud_backup
- h410s_firmware
- h500e_firmware
- h300e
- h500e
linux
- linux_kernel
CWE
CWE-20
Improper Input Validation