CVE-2021-23168

NameCVE-2021-23168
DescriptionOut of bounds read for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow an unauthenticated user to potentially enable denial of service via adjacent access.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
ReferencesDLA-3380-1, ELA-826-1

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
firmware-nonfree (PTS)jessie/non-free20190114+really20220913-0+deb8u3fixed
jessie/non-free (lts)20190114+really20220913-0+deb8u1fixed
stretch/non-free20190114+really20220913-0+deb9u3fixed
stretch/non-free (security)20190114-2~deb9u1vulnerable
stretch/non-free (lts)20190114+really20220913-0+deb9u1fixed
buster/non-free20190114+really20220913-0+deb10u3fixed
buster/non-free (security)20190114+really20220913-0+deb10u2fixed
bullseye/non-free20210315-3vulnerable
bookworm/non-free-firmware20230210-5fixed
trixie/non-free-firmware20240909-2fixed
sid/non-free-firmware20241210-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
firmware-nonfreesourcejessie20190114+really20220913-0+deb8u1ELA-826-1
firmware-nonfreesourcestretch20190114+really20220913-0+deb9u1ELA-826-1
firmware-nonfreesourcebuster20190114+really20220913-0+deb10u1DLA-3380-1
firmware-nonfreesource(unstable)20220913-1

Notes

[bullseye] - firmware-nonfree <no-dsa> (Non-free not supported)
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00621.html
Fixed upstream in 20220815
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=63a87d2f1f7ea029e8d32ed03d972947a7bb60fd
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=87d07fd3d3156b7bb1ff9a8000c316c2f68ffd7c
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=447ca4a62cca38d656922ce6ba97610db11cf341
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=31d24ca113ed93d0564c78d6c47d362b9f274a7b
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=b93bf2c9ce1d4648a8488aa29f2c7e840e6e449b
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=1068c45f16de69c769c500175a91ce1296bb1e27
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=45c5e53ea4964393a12f436bc5c9e2cb1ba6e0a6
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=f7f3d1f40c26fcf1414b9adddb832c4a3afb912c
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=045847edb1ed649d00b5c897615d013833287a04
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=140beaf7d770ea8320c12b6e31a067f9e9d6d441
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=e6185d5197fd1d8015f1c7663582158b9945c075

Search for package or bug name: Reporting problems