CVE-2021-27645

Note

introduced in 2.29 by:
https://sourceware.org/git/?p=glibc.git;a=commit;h=745664bd798ec8fd50438605948eea594179fba1
introduced in 2.28-1 debian packaging by:
https://salsa.debian.org/glibc-team/glibc/-/commit/aea56157b456d4d9bef337d0149e952a41a7d919

Package	Release	Status
eglibc Launchpad, Ubuntu, Debian	bionic	Does not exist
	focal	Does not exist
	groovy	Does not exist
	hirsute	Does not exist
	impish	Does not exist
	jammy	Does not exist
	kinetic	Does not exist
	lunar	Does not exist
	mantic	Does not exist
	trusty	Not vulnerable (code not present)
	upstream	Needs triage
	xenial	Does not exist
glibc Launchpad, Ubuntu, Debian	bionic	Not vulnerable (code not present)
	focal	Released (2.31-0ubuntu9.7)
	groovy	Ignored (end of life)
	hirsute	Not vulnerable (2.33-0ubuntu5)
	impish	Not vulnerable (2.33-0ubuntu5)
	jammy	Not vulnerable (2.33-0ubuntu5)
	kinetic	Not vulnerable (2.33-0ubuntu5)
	lunar	Not vulnerable (2.33-0ubuntu5)
	mantic	Not vulnerable (2.33-0ubuntu5)
	trusty	Does not exist
	upstream	Needs triage
	xenial	Needs triage
	Patches: upstream: https://sourceware.org/git/?p=glibc.git;a=commit;h=dca565886b5e8bd7966e15f0ca42ee5cff686673

Parameter	Value
Base score	2.5
Attack vector	Local
Attack complexity	High
Privileges required	Low
User interaction	None
Scope	Unchanged
Confidentiality	None
Integrity impact	None
Availability impact	Low
Vector	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L

CVE-2021-27645

Notes

Priority

Cvss 3 Severity Score

Status

Severity score breakdown

References

Bugs

Join the discussion

Canonical is offering Expanded Security Maintenance

Further reading