CVE-2021-1110: Input Validation
First published: Wed Aug 11 2021(Updated: )
NVIDIA Linux kernel distributions on Jetson Xavier contain a vulnerability in camera firmware where a user can change input data after validation, which may lead to complete denial of service and serious data corruption of all kernel components.
Credit: psirt@nvidia.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| NVIDIA Jetson Linux | >=32.1<32.6.1 | |
| NVIDIA Jetson AGX Xavier | ||
| Nvidia Jetson Xavier Nx |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2021-1110?
CVE-2021-1110 is a vulnerability in the camera firmware of NVIDIA Linux kernel distributions on Jetson Xavier that allows users to change input data after validation, leading to denial of service and data corruption.
How does CVE-2021-1110 impact NVIDIA Linux kernel distributions on Jetson Xavier?
CVE-2021-1110 can cause complete denial of service and serious data corruption of all kernel components on NVIDIA Linux kernel distributions on Jetson Xavier.
What is the severity of CVE-2021-1110?
CVE-2021-1110 has a severity rating of 7.1 (high).
Which software versions are affected by CVE-2021-1110?
NVIDIA Jetson Linux versions between 32.1 and 32.6.1 are affected by CVE-2021-1110.
How can I mitigate CVE-2021-1110?
To mitigate CVE-2021-1110, you should update your NVIDIA Jetson Linux installation to a version higher than 32.6.1.
- collector/nvd-index
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/nvidia
- canonical/nvidia jetson linux
- version/nvidia jetson linux/32.1
- canonical/nvidia jetson agx xavier
- canonical/nvidia jetson xavier nx