{"id":"MGASA-2021-0061","summary":"Updated kernel packages fix security vulnerabilities","details":"This kernel update is based on upstream 5.10.12 and fixes at least the\nfollowing security issues:\n\nfs/nfsd/nfs3xdr.c in the Linux kernel through 5.10.8, when there is an NFS\nexport of a subdirectory of a filesystem, allows remote attackers to\ntraverse to other parts of the filesystem via READDIRPLUS (CVE-2021-3178).\n\nAn issue was discovered in the Linux kernel through 5.10.11. PI futexes\nhave a kernel stack use-after-free during fault handling, allowing local\nusers to execute code in the kernel (CVE-2021-3347).\n\nnbd_add_socket in drivers/block/nbd.c in the Linux kernel through 5.10.12\nhas an ndb_queue_rq use-after-free that could be triggered by local\nattackers (with access to the nbd device) via an I/O request at a\ncertain point during device setup (CVE-2021-3348).\n\nIt also adds the following fixes:\n- ALSA: hda: Add Cometlake-R PCI ID\n- ALSA: hda: Add AlderLake-P PCI ID and HDMI codec vid\n- ALSA: hda/via: Apply the workaround generically for Clevo machines\n- ASoC: AMD Renoir - refine DMI entries for some Lenovo products\n- crypto: arm64/sha - add missing module aliases\n- drm/amdgpu: Add Missing Sienna Cichlid DID\n- drm/gpu/nouveau/dispnv50: Restore pushing of all data\n- fix and re-enamble 3rdparty rtl8821ce driver (mga#28150)\n- iwlwifi: provide gso_type to GSO packets (fixes upload speed regression)\n\nFor other upstream fixes, see the referenced changelogs.\n","modified":"2026-04-16T04:40:52.681218657Z","published":"2021-01-31T21:34:26Z","upstream":["CVE-2021-3178","CVE-2021-3347","CVE-2021-3348"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2021-0061.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=28210"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=28150"},{"type":"WEB","url":"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.9"},{"type":"WEB","url":"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.10"},{"type":"WEB","url":"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.11"},{"type":"WEB","url":"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.12"}],"affected":[{"package":{"name":"kernel","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/kernel?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.10.12-1.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0061.json"}},{"package":{"name":"kmod-virtualbox","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/kmod-virtualbox?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"6.1.18-4.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0061.json"}},{"package":{"name":"kmod-xtables-addons","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/kmod-xtables-addons?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.13-9.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0061.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}