784569 – (CVE-2021-23961) [Tracker] Internal network hosts could have been probed by a malicious webpage (CVE-2021-23961)

Bug 784569 (CVE-2021-23961) - [Tracker] Internal network hosts could have been probed by a malicious webpage (CVE-2021-23961)

Summary: [Tracker] Internal network hosts could have been probed by a malicious webpag...

Status:	RESOLVED FIXED

Alias:	CVE-2021-23961

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	Normal normal (vote)
Assignee:	Gentoo Security

URL:
Whiteboard:
Keywords:	Tracker

Depends on:	MFSA-2021-15 MFSA-2021-14
Blocks:	CVE-2021-23955, CVE-2021-23956, CVE-2021-23958, CVE-2021-23962, CVE-2021-23963, CVE-2021-23965, CVE-2021-26976, MFSA-2021-03, MFSA-2021-04
	Show dependency tree

Reported:	2021-04-20 21:29 UTC by Thomas Deutschmann (RETIRED)
Modified:	2021-05-13 13:33 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Thomas Deutschmann (RETIRED) gentoo-dev

2021-04-20 21:29:53 UTC

Further techniques that built on the slipstream research combined with a malicious webpage could have exposed both an internal network's hosts as well as services running on the user's local machine.

Comment 1 John Helmert III archtester

2021-05-13 13:33:20 UTC

Dead tracker, closing.