We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2021-47351

ubifs: Fix races between xattr_{set|get} and listxattr operations



Description

In the Linux kernel, the following vulnerability has been resolved: ubifs: Fix races between xattr_{set|get} and listxattr operations UBIFS may occur some problems with concurrent xattr_{set|get} and listxattr operations, such as assertion failure, memory corruption, stale xattr value[1]. Fix it by importing a new rw-lock in @ubifs_inode to serilize write operations on xattr, concurrent read operations are still effective, just like ext4. [1] https://lore.kernel.org/linux-mtd/20200630130438.141649-1-houtao1@huawei.com

Reserved 2024-05-21 | Published 2024-05-21 | Updated 2024-11-04 | Assigner Linux

Product status

Default status
unaffected

1e51764a3c2a before 7adc05b73d91
affected

1e51764a3c2a before 38dde03eb239
affected

1e51764a3c2a before 9558612cb829
affected

1e51764a3c2a before c0756f75c221
affected

1e51764a3c2a before f4e3634a3b64
affected

Default status
affected

2.6.27
affected

Any version before 2.6.27
unaffected

5.4.133
unaffected

5.10.51
unaffected

5.12.18
unaffected

5.13.3
unaffected

5.14
unaffected

References

git.kernel.org/...c/7adc05b73d91a5e3d4ca7714fa53ad9b70c53d08

git.kernel.org/...c/38dde03eb239605f428f3f1e4baa73d4933a4cc6

git.kernel.org/...c/9558612cb829f2c022b788f55d6b8437d5234a82

git.kernel.org/...c/c0756f75c22149d20fcb7d8409827cee905eb386

git.kernel.org/...c/f4e3634a3b642225a530c292fdb1e8a4007507f5

cve.org (CVE-2021-47351)

nvd.nist.gov (CVE-2021-47351)

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2021-47351

Support options

Helpdesk Chat, Email, Knowledgebase
Telegram Chat
Subscribe to our newsletter to learn more about our work.