CVE-2021-39295 Information

Description

In OpenBMC 2.9 crafted IPMI messages allow an attacker to cause a denial of service to the BMC via the netipmid (IPMI lan+) interface.

Reference

https://github.com/openbmc/openbmc https://github.com/openbmc/docs/blob/master/release/release-notes.md https://github.com/google/security-research/security/advisories/GHSA-gg9x-v835-m48q https://openbmc.org https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00737.html https://github.com/openbmc/openbmc/issues/3811