Bug 1186494 (CVE-2021-29256)

Summary: VUL-1: CVE-2021-29256: kernel-source,kernel-source-rt,kernel-source-azure: . The Arm Mali GPU kernel driver allows an unprivileged user to achieve access to freed memory, leading to information disclosure or root privilege escalation. This
Product: [Novell Products] SUSE Security Incidents Reporter: Marcus Meissner <meissner>
Component: IncidentsAssignee: Kernel Bugs <kernel-bugs>
Status: RESOLVED INVALID QA Contact: Security Team bot <security-team>
Severity: Minor    
Priority: P5 - None CC: smash_bz
Version: unspecified   
Target Milestone: ---   
Hardware: Other   
OS: Other   
URL: https://smash.suse.de/issue/300624/
Whiteboard:
Found By: Security Response Team Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---

Description Marcus Meissner 2021-05-27 10:09:18 UTC 
CVE-2021-29256

. The Arm Mali GPU kernel driver allows an unprivileged user to achieve access
to freed memory, leading to information disclosure or root privilege escalation.
This affects Bifrost r16p0 through r29p0 before r30p0, Valhall r19p0 through
r29p0 before r30p0, and Midgard r28p0 through r30p0.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-29256
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29256
https://developer.arm.com/support/arm-security-updates/mali-gpu-kernel-driver
Comment 1 Marcus Meissner 2021-05-27 10:09:59 UTC 
does not seem to in the regular kernel -> close