THREATINT

We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Zendesk (Helpdesk and Chat)

Ok

PUBLISHED

CVE-2021-47351

ubifs: Fix races between xattr_{set|get} and listxattr operations

Reserved:2024-05-21
Published:2024-05-21
Updated:2024-06-11

Description

In the Linux kernel, the following vulnerability has been resolved: ubifs: Fix races between xattr_{set|get} and listxattr operations UBIFS may occur some problems with concurrent xattr_{set|get} and listxattr operations, such as assertion failure, memory corruption, stale xattr value[1]. Fix it by importing a new rw-lock in @ubifs_inode to serilize write operations on xattr, concurrent read operations are still effective, just like ext4. [1] https://lore.kernel.org/linux-mtd/20200630130438.141649-1-houtao1@huawei.com

Product status

Default status
unaffected

1e51764a3c2a before 7adc05b73d91
affected

1e51764a3c2a before 38dde03eb239
affected

1e51764a3c2a before 9558612cb829
affected

1e51764a3c2a before c0756f75c221
affected

1e51764a3c2a before f4e3634a3b64
affected

Default status
affected

2.6.27
affected

Any version before 2.6.27
unaffected

5.4.133
unaffected

5.10.51
unaffected

5.12.18
unaffected

5.13.3
unaffected

5.14
unaffected

References

https://git.kernel.org/stable/c/7adc05b73d91a5e3d4ca7714fa53ad9b70c53d08

https://git.kernel.org/stable/c/38dde03eb239605f428f3f1e4baa73d4933a4cc6

https://git.kernel.org/stable/c/9558612cb829f2c022b788f55d6b8437d5234a82

https://git.kernel.org/stable/c/c0756f75c22149d20fcb7d8409827cee905eb386

https://git.kernel.org/stable/c/f4e3634a3b642225a530c292fdb1e8a4007507f5

cve.org CVE-2021-47351

nvd.nist.gov CVE-2021-47351

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2021-47351