Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Linux Kernel LoadPin bypass via dm-verity table reload
Vulnerability Description
Dm-verity is used for extending root-of-trust to root filesystems. LoadPin builds on this property to restrict module/firmware loads to just the trusted root filesystem. Device-mapper table reloads currently allow users with root privileges to switch out the target with an equivalent dm-linear target and bypass verification till reboot. This allows root to bypass LoadPin and can be used to load untrusted and unverified kernel modules and firmware, which implies arbitrary kernel execution and persistence for peripherals that do not verify firmware updates. We recommend upgrading past commit 4caae58406f8ceb741603eee460d79bacca9b1b5
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:N
Vulnerability Type
使用假设不可变数据进行的认证绕过
Vulnerability Title
Google Dm-verity 授权问题漏洞
Vulnerability Description
Google Dm-verity是美国谷歌(Google)公司的用于将信任根扩展到多个发行版的根文件系统。 Google Dm-verity存在安全漏洞。攻击者利用该漏洞绕过 LoadPin 并加载不受信任和未经验证的内核模块和固件。
CVSS Information
N/A
Vulnerability Type
N/A