{"vulnerability": "CVE-2021-42327", "sightings": [{"uuid": "08d832c2-9c34-40a4-8ff4-5509c141da4d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42327", "type": "published-proof-of-concept", "source": "https://t.me/hack77z99/9007", "content": "\u062a\u062c\u0627\u0648\u0632 SLUB CVE-2021-42327\n\n\u0645\u0642\u0627\u0644\u0629 \u0645\u0648\u062c\u0632\u0629 \u062d\u0648\u0644 \u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u062e\u0637\u0623 \u062a\u062c\u0627\u0648\u0632 \u0633\u0639\u0629 \u0627\u0644\u0645\u062e\u0632\u0646 \u0627\u0644\u0645\u0624\u0642\u062a \u0644\u0644\u0628\u0644\u0627\u0637\u0629 \u0641\u064a \u0628\u0631\u0646\u0627\u0645\u062c \u062a\u0634\u063a\u064a\u0644 \u0648\u062d\u062f\u0629 \u0645\u0639\u0627\u0644\u062c\u0629 \u0627\u0644\u0631\u0633\u0648\u0645\u0627\u062a AMD. \u0628\u0642\u0644\u0645 \u062b\u064a\u0644\u0641\u0648\u0631\u062f \u0648\u064a\u0644\u064a\u0627\u0645\u0632.\n\n\u0644\u0645 \u064a\u0643\u0646 \u0644\u062f\u0649 \u0627\u0644\u0645\u0624\u0644\u0641 \u062d\u0642 \u0627\u0644\u0648\u0635\u0648\u0644 \u0625\u0644\u0649 \u0648\u062d\u062f\u0629 \u0645\u0639\u0627\u0644\u062c\u0629 \u0627\u0644\u0631\u0633\u0648\u0645\u0627\u062a AMD \u060c \u0644\u0630\u0644\u0643 \u0642\u0627\u0645\u0648\u0627 \u064a\u062f\u0648\u064a\u064b\u0627 \u0628\u0646\u0633\u062e \u0627\u0644\u0643\u0648\u062f \u0627\u0644\u0636\u0639\u064a\u0641. \u064a\u0633\u062a\u062e\u062f\u0645 \u0627\u0644\u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u0643\u0627\u0626\u0646\u0627\u062a msg_msg \u0627\u0644\u0645\u0631\u0646\u0629 \u0644\u062a\u0633\u0631\u064a\u0628 \u0639\u0646\u0648\u0627\u0646 \u0627\u0644\u0646\u0648\u0627\u0629 \u060c \u0648\u0627\u0644\u0643\u062a\u0627\u0628\u0629 \u0641\u0648\u0642 \u0645\u0624\u0634\u0631 \u0627\u0644\u0642\u0627\u0626\u0645\u0629 \u0627\u0644\u062d\u0631\u0629 \u0644\u0644\u0628\u0644\u0627\u0637\u0629 \u060c \u0648\u062a\u062e\u0635\u064a\u0635 \u0627\u0644\u0630\u0627\u0643\u0631\u0629 \u0627\u0644\u062a\u064a \u062a\u062d\u062a\u0648\u064a \u0639\u0644\u0649 modprobe_path \u060c \u0648\u0627\u0644\u0643\u062a\u0627\u0628\u0629 \u0641\u0648\u0642\u0647\u0627 \u0644\u062a\u0646\u0641\u064a\u0630 \u0627\u0644\u062a\u0639\u0644\u064a\u0645\u0627\u062a \u0627\u0644\u0628\u0631\u0645\u062c\u064a\u0629.", "creation_timestamp": "2021-11-16T18:00:09.000000Z"}, {"uuid": "771c4210-c343-482c-9ed4-a8cae844090c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42327", "type": "published-proof-of-concept", "source": "https://t.me/cKure/8147", "content": "\u25a0\u25a0\u25a0\u25a0\u25a1 SLUB overflow CVE-2021-42327\n\nhttps://docfate111.github.io/blog/securityresearch/2021/11/08/SLUBoverflow.html", "creation_timestamp": "2021-11-21T06:33:42.000000Z"}, {"uuid": "ba0474e1-5663-4836-bef2-c0221601af38", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42327", "type": "published-proof-of-concept", "source": "https://t.me/linkersec/129", "content": "SLUB overflow CVE-2021-42327\n\nA concise article about exploiting a slab buffer-overflow bug in the AMD GPU driver. By Thelford Williams.\n\nThe author didn't have access to an AMD GPU, so they manually replicated the vulnerable code. The exploit uses msg_msg elastic objects to leak the kernel address, overwrite slab freelist pointer, allocate memory containing modprobe_path, and overwrite it for code execution.", "creation_timestamp": "2021-11-16T14:28:42.000000Z"}, {"uuid": "98b20ddb-9ca6-4e84-a9a2-7a468d62b3ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42327", "type": "published-proof-of-concept", "source": "https://t.me/anwar1213xx/1285", "content": "\u062a\u062c\u0627\u0648\u0632 SLUB CVE-2021-42327\n\n\u0645\u0642\u0627\u0644\u0629 \u0645\u0648\u062c\u0632\u0629 \u062d\u0648\u0644 \u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u062e\u0637\u0623 \u062a\u062c\u0627\u0648\u0632 \u0633\u0639\u0629 \u0627\u0644\u0645\u062e\u0632\u0646 \u0627\u0644\u0645\u0624\u0642\u062a \u0644\u0644\u0628\u0644\u0627\u0637\u0629 \u0641\u064a \u0628\u0631\u0646\u0627\u0645\u062c \u062a\u0634\u063a\u064a\u0644 \u0648\u062d\u062f\u0629 \u0645\u0639\u0627\u0644\u062c\u0629 \u0627\u0644\u0631\u0633\u0648\u0645\u0627\u062a AMD. \u0628\u0642\u0644\u0645 \u062b\u064a\u0644\u0641\u0648\u0631\u062f \u0648\u064a\u0644\u064a\u0627\u0645\u0632.\n\n\u0644\u0645 \u064a\u0643\u0646 \u0644\u062f\u0649 \u0627\u0644\u0645\u0624\u0644\u0641 \u062d\u0642 \u0627\u0644\u0648\u0635\u0648\u0644 \u0625\u0644\u0649 \u0648\u062d\u062f\u0629 \u0645\u0639\u0627\u0644\u062c\u0629 \u0627\u0644\u0631\u0633\u0648\u0645\u0627\u062a AMD \u060c \u0644\u0630\u0644\u0643 \u0642\u0627\u0645\u0648\u0627 \u064a\u062f\u0648\u064a\u064b\u0627 \u0628\u0646\u0633\u062e \u0627\u0644\u0643\u0648\u062f \u0627\u0644\u0636\u0639\u064a\u0641. \u064a\u0633\u062a\u062e\u062f\u0645 \u0627\u0644\u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u0643\u0627\u0626\u0646\u0627\u062a msg_msg \u0627\u0644\u0645\u0631\u0646\u0629 \u0644\u062a\u0633\u0631\u064a\u0628 \u0639\u0646\u0648\u0627\u0646 \u0627\u0644\u0646\u0648\u0627\u0629 \u060c \u0648\u0627\u0644\u0643\u062a\u0627\u0628\u0629 \u0641\u0648\u0642 \u0645\u0624\u0634\u0631 \u0627\u0644\u0642\u0627\u0626\u0645\u0629 \u0627\u0644\u062d\u0631\u0629 \u0644\u0644\u0628\u0644\u0627\u0637\u0629 \u060c \u0648\u062a\u062e\u0635\u064a\u0635 \u0627\u0644\u0630\u0627\u0643\u0631\u0629 \u0627\u0644\u062a\u064a \u062a\u062d\u062a\u0648\u064a \u0639\u0644\u0649 modprobe_path \u060c \u0648\u0627\u0644\u0643\u062a\u0627\u0628\u0629 \u0641\u0648\u0642\u0647\u0627 \u0644\u062a\u0646\u0641\u064a\u0630 \u0627\u0644\u062a\u0639\u0644\u064a\u0645\u0627\u062a \u0627\u0644\u0628\u0631\u0645\u062c\u064a\u0629.", "creation_timestamp": "2021-11-16T18:00:06.000000Z"}, {"uuid": "3212b1aa-fe64-4c77-a7df-57f2cb46a7a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42327", "type": "published-proof-of-concept", "source": "https://t.me/Termux_AND_Security7667/327", "content": "\u062a\u062c\u0627\u0648\u0632 SLUB CVE-2021-42327\n\n\u0645\u0642\u0627\u0644\u0629 \u0645\u0648\u062c\u0632\u0629 \u062d\u0648\u0644 \u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u062e\u0637\u0623 \u062a\u062c\u0627\u0648\u0632 \u0633\u0639\u0629 \u0627\u0644\u0645\u062e\u0632\u0646 \u0627\u0644\u0645\u0624\u0642\u062a \u0644\u0644\u0628\u0644\u0627\u0637\u0629 \u0641\u064a \u0628\u0631\u0646\u0627\u0645\u062c \u062a\u0634\u063a\u064a\u0644 \u0648\u062d\u062f\u0629 \u0645\u0639\u0627\u0644\u062c\u0629 \u0627\u0644\u0631\u0633\u0648\u0645\u0627\u062a AMD. \u0628\u0642\u0644\u0645 \u062b\u064a\u0644\u0641\u0648\u0631\u062f \u0648\u064a\u0644\u064a\u0627\u0645\u0632.\n\n\u0644\u0645 \u064a\u0643\u0646 \u0644\u062f\u0649 \u0627\u0644\u0645\u0624\u0644\u0641 \u062d\u0642 \u0627\u0644\u0648\u0635\u0648\u0644 \u0625\u0644\u0649 \u0648\u062d\u062f\u0629 \u0645\u0639\u0627\u0644\u062c\u0629 \u0627\u0644\u0631\u0633\u0648\u0645\u0627\u062a AMD \u060c \u0644\u0630\u0644\u0643 \u0642\u0627\u0645\u0648\u0627 \u064a\u062f\u0648\u064a\u064b\u0627 \u0628\u0646\u0633\u062e \u0627\u0644\u0643\u0648\u062f \u0627\u0644\u0636\u0639\u064a\u0641. \u064a\u0633\u062a\u062e\u062f\u0645 \u0627\u0644\u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u0643\u0627\u0626\u0646\u0627\u062a msg_msg \u0627\u0644\u0645\u0631\u0646\u0629 \u0644\u062a\u0633\u0631\u064a\u0628 \u0639\u0646\u0648\u0627\u0646 \u0627\u0644\u0646\u0648\u0627\u0629 \u060c \u0648\u0627\u0644\u0643\u062a\u0627\u0628\u0629 \u0641\u0648\u0642 \u0645\u0624\u0634\u0631 \u0627\u0644\u0642\u0627\u0626\u0645\u0629 \u0627\u0644\u062d\u0631\u0629 \u0644\u0644\u0628\u0644\u0627\u0637\u0629 \u060c \u0648\u062a\u062e\u0635\u064a\u0635 \u0627\u0644\u0630\u0627\u0643\u0631\u0629 \u0627\u0644\u062a\u064a \u062a\u062d\u062a\u0648\u064a \u0639\u0644\u0649 modprobe_path \u060c \u0648\u0627\u0644\u0643\u062a\u0627\u0628\u0629 \u0641\u0648\u0642\u0647\u0627 \u0644\u062a\u0646\u0641\u064a\u0630 \u0627\u0644\u062a\u0639\u0644\u064a\u0645\u0627\u062a \u0627\u0644\u0628\u0631\u0645\u062c\u064a\u0629.", "creation_timestamp": "2021-11-16T18:00:06.000000Z"}, {"uuid": "b18e6d24-aca5-46bd-bfc5-291f247e8839", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42327", "type": "published-proof-of-concept", "source": "Telegram/n-eJb_bPDdKFJMa22aYLTja9lfApX45ftzuXjh3MC3aMiQ", "content": "", "creation_timestamp": "2021-11-03T15:01:23.000000Z"}, {"uuid": "c2b960fe-658a-40d6-96cf-c2de8d75a00a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42327", "type": "seen", "source": "https://t.me/cibsecurity/30963", "content": "\u203c CVE-2021-42327 \u203c\n\ndp_link_settings_write in drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm_debugfs.c in the Linux kernel through 5.14.14 allows a heap-based buffer overflow by an attacker who can write a string to the AMD GPU display drivers debug filesystem. There are no checks on size within parse_write_buffer_into_params when it uses the size of copy_from_user to copy a userspace buffer into a 40-byte heap buffer.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-21T20:37:09.000000Z"}]}