CVE-2021-45868

Published: Mar 18, 2022

Modified: Aug 4, 2024

PUBLISHED

Description

In the Linux kernel before 5.15.3, fs/quota/quota_tree.c does not validate the block number in the quota tree (on disk). This can, for example, lead to a kernel/locking/rwsem.c use-after-free if there is a corrupted quota file.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://bugzilla.kernel.org/show_bug.cgi?id=214655

x_refsource_MISC

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=9bf3d20331295b1ecb81f4ed9ef358c51699a050

x_refsource_MISC

https://www.openwall.com/lists/oss-security/2022/03/17/2

x_refsource_MISC

https://www.openwall.com/lists/oss-security/2022/03/17/1

x_refsource_MISC

https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.3

x_refsource_MISC

https://security.netapp.com/advisory/ntap-20220419-0003/

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-45868

Description

Affected Products

References