We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Fathom (Privacy friendly web analytics)
Zendesk (Helpdesk and Chat)

Ok

Home | EN
Support
CVE

PUBLISHED

CVE-2021-47351

ubifs: Fix races between xattr_{set|get} and listxattr operations

Assigner	Linux
Reserved	2024-05-21
Published	2024-05-21
Updated	2024-06-11

Description

In the Linux kernel, the following vulnerability has been resolved: ubifs: Fix races between xattr_{set|get} and listxattr operations UBIFS may occur some problems with concurrent xattr_{set|get} and listxattr operations, such as assertion failure, memory corruption, stale xattr value[1]. Fix it by importing a new rw-lock in @ubifs_inode to serilize write operations on xattr, concurrent read operations are still effective, just like ext4. [1] https://lore.kernel.org/linux-mtd/20200630130438.141649-1-houtao1@huawei.com

Product status

Default status

unaffected

1e51764a3c2a before 7adc05b73d91

affected

1e51764a3c2a before 38dde03eb239

affected

1e51764a3c2a before 9558612cb829

affected

1e51764a3c2a before c0756f75c221

affected

1e51764a3c2a before f4e3634a3b64

affected

Default status

affected

2.6.27

affected

Any version before 2.6.27

unaffected

5.4.133

unaffected

5.10.51

unaffected

5.12.18

unaffected

5.13.3

unaffected

5.14

unaffected

References

https://git.kernel.org/stable/c/7adc05b73d91a5e3d4ca7714fa53ad9b70c53d08

https://git.kernel.org/stable/c/38dde03eb239605f428f3f1e4baa73d4933a4cc6

https://git.kernel.org/stable/c/9558612cb829f2c022b788f55d6b8437d5234a82

https://git.kernel.org/stable/c/c0756f75c22149d20fcb7d8409827cee905eb386

https://git.kernel.org/stable/c/f4e3634a3b642225a530c292fdb1e8a4007507f5

cve.org CVE-2021-47351

nvd.nist.gov CVE-2021-47351

Download JSON

https://cve.threatint.com/CVE/CVE-2021-47351

Find us on

Data Privacy
Terms of Use

© Copyright 2024 THREATINT. Made in Cyprus with ❤ + ☼