Improper Check for Unusual or Exceptional Conditions

CVE-2021-46934

Low

3.3/10

Summary

In the Linux kernel, the following vulnerability has been resolved: i2c: validate user data in compat ioctl Wrong user data may cause warning in i2c_transfer(), ex: zero msgs. Userspace should not be able to trigger warnings, so this patch adds validation checks for user data in compact ioctl to prevent reported warnings

Attack Complexity: LOW
Attack Vector: LOCAL
Integrity Impact: LOW
Scope: UNCHANGED
User Interaction: NONE
Privileges Required: LOW
Confidentiality Impact: NONE
Availability Impact: NONE

CWE-754 - Improper Check for Unusual or Exceptional Conditions

The software does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the software.

References

Advisory Timeline

Published Feb 27, 2024

Improper Check for Unusual or Exceptional Conditions

CVE-2021-46934

Summary

CWE-754 - Improper Check for Unusual or Exceptional Conditions

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS