CVE-2021-37409

NameCVE-2021-37409
DescriptionImproper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow a privileged user to potentially enable escalation of privilege via local access.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
ReferencesDLA-3380-1

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
firmware-nonfree (PTS)bullseye/non-free20210315-3vulnerable
bookworm/non-free-firmware20230210-5fixed
trixie/non-free-firmware20240709-2fixed
sid/non-free-firmware20240909-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
firmware-nonfreesourcebuster20190114+really20220913-0+deb10u1DLA-3380-1
firmware-nonfreesource(unstable)20220913-1

Notes

[bullseye] - firmware-nonfree <no-dsa> (Non-free not supported)
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00621.html
Fixed upstream in 20220815
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=63a87d2f1f7ea029e8d32ed03d972947a7bb60fd
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=87d07fd3d3156b7bb1ff9a8000c316c2f68ffd7c
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=447ca4a62cca38d656922ce6ba97610db11cf341
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=31d24ca113ed93d0564c78d6c47d362b9f274a7b
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=b93bf2c9ce1d4648a8488aa29f2c7e840e6e449b
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=1068c45f16de69c769c500175a91ce1296bb1e27
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=45c5e53ea4964393a12f436bc5c9e2cb1ba6e0a6
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=f7f3d1f40c26fcf1414b9adddb832c4a3afb912c
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=045847edb1ed649d00b5c897615d013833287a04
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=140beaf7d770ea8320c12b6e31a067f9e9d6d441
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=e6185d5197fd1d8015f1c7663582158b9945c075

Search for package or bug name: Reporting problems