NULL Pointer Dereference Affecting perf package, versions *

Note: Versions mentioned in the description apply only to the upstream perf package and not the perf package as distributed by Centos. See How to fix? for Centos:7 relevant fixed versions and status.

NULL Pointer Dereference vulnerability in openEuler kernel on Linux (network modules) allows Pointer Manipulation. This vulnerability is associated with program files net/sched/sch_cbs.C.

This issue affects openEuler kernel: from 4.19.90 before 4.19.90-2401.3.

• https://access.redhat.com/security/cve/CVE-2021-33630
• https://gitee.com/src-openeuler/kernel/pulls/1389
• https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1030
• https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1031
• https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=3e8b9bfa110896f95d602d8c98d5f9d67e41d78c
• http://www.openwall.com/lists/oss-security/2024/01/30/3
• http://www.openwall.com/lists/oss-security/2024/01/30/4
• http://www.openwall.com/lists/oss-security/2024/01/30/5
• http://www.openwall.com/lists/oss-security/2024/01/30/10
• http://www.openwall.com/lists/oss-security/2024/01/30/9
• http://www.openwall.com/lists/oss-security/2024/01/31/2
• http://www.openwall.com/lists/oss-security/2024/01/31/3
• http://www.openwall.com/lists/oss-security/2024/02/02/6
• http://www.openwall.com/lists/oss-security/2024/02/02/9
• http://www.openwall.com/lists/oss-security/2024/02/03/1
• https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html