Rewterz Threat Alert – Nanocore Rat – Active IOCs
March 26, 2022Rewterz Threat Advisory – CVE-2022-21820 – NVIDIA DCGM Vulnerability
March 28, 2022Rewterz Threat Alert – Nanocore Rat – Active IOCs
March 26, 2022Rewterz Threat Advisory – CVE-2022-21820 – NVIDIA DCGM Vulnerability
March 28, 2022Severity
Medium
Analysis Summary
CVE-2021-4148
Linux Kernel is vulnerable to a denial of service, caused by improper implementation of block_invalidatepage(). By sending a specially-crafted request, a local attacker could exploit this vulnerability to cause a denial of service.
CVE-2021-4149
Linux Kernel is vulnerable to a denial of service, caused by an improper lock operation in btrfs_alloc_tree_b in fs/btrfs/extent-tree.c. By sending a specially-crafted request, a local authenticated attacker could exploit this vulnerability to cause a denial of service.
Impact
Denial of Service
Indicator Of Compromise
CVE
- CVE-2021-4148
- CVE-2021-4149
Affected Vendors
Linux
Affected Products
- Linux Kernel 5.14.15
- Linux Kernel 5.15
Remediation
Upgrade to the latest version of Linux Kernel, available from the Kernel Web site.