CVE-2021-4155

Published: Aug 24, 2022

Modified: Aug 3, 2024

PUBLISHED

Description

A data leak flaw was found in the way XFS_IOC_ALLOCSP IOCTL in the XFS filesystem allowed for size increase of files with unaligned size. A local attacker could use this flaw to leak data on the XFS filesystem otherwise not accessible to them.

Vendor	Product	Versions
n/a	kernel	affected `Fixed in Kernel v5.16`

Weaknesses (CWE)

CWE-131

References

https://www.openwall.com/lists/oss-security/2022/01/10/1

x_refsource_MISC

https://bugzilla.redhat.com/show_bug.cgi?id=2034813

x_refsource_MISC

https://access.redhat.com/security/cve/CVE-2021-4155

x_refsource_MISC

https://security-tracker.debian.org/tracker/CVE-2021-4155

x_refsource_MISC

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=983d8e60f50806f90534cc5373d0ce867e5aaf79

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-4155

Description

Affected Products

Weaknesses (CWE)

References