5.5

CVE-2021-47166

NFS: Don't corrupt the value of pg_bytes_written in nfs_do_recoalesce()

In the Linux kernel, the following vulnerability has been resolved:

NFS: Don't corrupt the value of pg_bytes_written in nfs_do_recoalesce()

The value of mirror->pg_bytes_written should only be updated after a
successful attempt to flush out the requests on the list.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 4.0 < 4.4.271
LinuxLinux Kernel Version >= 4.5 < 4.9.271
LinuxLinux Kernel Version >= 4.10 < 4.14.235
LinuxLinux Kernel Version >= 4.15 < 4.19.193
LinuxLinux Kernel Version >= 4.20 < 5.4.124
LinuxLinux Kernel Version >= 5.5 < 5.10.42
LinuxLinux Kernel Version >= 5.11 < 5.12.9
LinuxLinux Kernel Version5.13 Updaterc1
LinuxLinux Kernel Version5.13 Updaterc2
LinuxLinux Kernel Version5.13 Updaterc3
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.24% 0.146
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-787 Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

https://git.kernel.org/stable/c/0d0ea309357dea0d85a82815f02157eb7fcda39f
Patch
https://git.kernel.org/stable/c/2fe1cac336b55a1f79e603e9ce3552c3623e90eb
Patch
https://git.kernel.org/stable/c/40f139a6d50c232c0d1fd1c5e65a845c62db0ede
Patch
https://git.kernel.org/stable/c/7087db95c0a06ab201b8ebfac6a7ec1e34257997
Patch
https://git.kernel.org/stable/c/785917316b25685c9b3a2a88f933139f2de75e33
Patch
https://git.kernel.org/stable/c/b291baae24f876acd5a5dd57d0bb2bbac8a68b0c
Patch
https://git.kernel.org/stable/c/c757c1f1e65d89429db1409429436cf40d47c008
Patch
https://git.kernel.org/stable/c/e8b8418ce14ae66ee55179901edd12191ab06a9e
Patch