CVE-2021-47353
Published: May 21, 2024
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: udf: Fix NULL pointer dereference in udf_symlink function In function udf_symlink, epos.bh is assigned with the value returned by udf_tgetblk. The function udf_tgetblk is defined in udf/misc.c and returns the value of sb_getblk function that could be NULL. Then, epos.bh is used without any check, causing a possible NULL pointer dereference when sb_getblk fails. This fix adds a check to validate the value of epos.bh.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 2f3d9ddd32a28803baa547e6274983b67d5e287caffected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 371566f63cbd0bb6fbb25b8fe9d5798268d35af9affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < baea588a42d675e35daeaddd10fbc9700550bc4daffected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 3638705ecd5ad2785e996f820121c0ad15ce64b5affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 80d505aee6398cf8beb72475c7edcf1733c1c68b+4 more versions |
Linux | Linux | affected 2.6.12unaffected 0 - < 2.6.12unaffected 4.4.276 - <= 4.4.*unaffected 4.9.276 - <= 4.9.*unaffected 4.14.240 - <= 4.14.*+6 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now