CVE-2021-47166 - OpenCVE

In the Linux kernel, the following vulnerability has been resolved: NFS: Don't corrupt the value of pg_bytes_written in nfs_do_recoalesce() The value of mirror->pg_bytes_written should only be updated after a successful attempt to flush out the requests on the list.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact partial

No data.

No data.

No data.

References

Link	Providers
https://git.kernel.org/stable/c/0d0ea309357dea0d85a82815f02157eb7fcda39f
https://git.kernel.org/stable/c/2fe1cac336b55a1f79e603e9ce3552c3623e90eb
https://git.kernel.org/stable/c/40f139a6d50c232c0d1fd1c5e65a845c62db0ede
https://git.kernel.org/stable/c/7087db95c0a06ab201b8ebfac6a7ec1e34257997
https://git.kernel.org/stable/c/785917316b25685c9b3a2a88f933139f2de75e33
https://git.kernel.org/stable/c/b291baae24f876acd5a5dd57d0bb2bbac8a68b0c
https://git.kernel.org/stable/c/c757c1f1e65d89429db1409429436cf40d47c008
https://git.kernel.org/stable/c/e8b8418ce14ae66ee55179901edd12191ab06a9e
https://lore.kernel.org/linux-cve-announce/2024032535-CVE-2021-47166-6ab7@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2021-47166
https://www.cve.org/CVERecord?id=CVE-2021-47166

History

Tue, 05 Nov 2024 20:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Wed, 11 Sep 2024 18:30:00 +0000

Type	Values Removed	Values Added
Metrics	ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Wed, 11 Sep 2024 13:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2024-03-25T09:16:19.133Z

Updated: 2024-11-04T12:00:41.598Z

Reserved: 2024-03-25T09:12:14.110Z

Link: CVE-2021-47166

Vulnrichment

Updated: 2024-08-04T05:24:39.936Z

NVD

Status : Awaiting Analysis

Published: 2024-03-25T10:15:08.667

Modified: 2024-03-25T13:47:14.087

Link: CVE-2021-47166

Redhat

Severity : Moderate

Publid Date: 2024-03-25T00:00:00Z

Links: CVE-2021-47166 - Bugzilla

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2021-47166", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2024-03-25T09:12:14.110Z", "datePublished": "2024-03-25T09:16:19.133Z", "dateUpdated": "2024-11-04T12:00:41.598Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2024-11-04T12:00:41.598Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFS: Don't corrupt the value of pg_bytes_written in nfs_do_recoalesce()\n\nThe value of mirror->pg_bytes_written should only be updated after a\nsuccessful attempt to flush out the requests on the list."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["fs/nfs/pagelist.c"], "versions": [{"version": "a7d42ddb3099", "lessThan": "e8b8418ce14a", "status": "affected", "versionType": "git"}, {"version": "a7d42ddb3099", "lessThan": "b291baae24f8", "status": "affected", "versionType": "git"}, {"version": "a7d42ddb3099", "lessThan": "c757c1f1e65d", "status": "affected", "versionType": "git"}, {"version": "a7d42ddb3099", "lessThan": "40f139a6d50c", "status": "affected", "versionType": "git"}, {"version": "a7d42ddb3099", "lessThan": "785917316b25", "status": "affected", "versionType": "git"}, {"version": "a7d42ddb3099", "lessThan": "7087db95c0a0", "status": "affected", "versionType": "git"}, {"version": "a7d42ddb3099", "lessThan": "2fe1cac336b5", "status": "affected", "versionType": "git"}, {"version": "a7d42ddb3099", "lessThan": "0d0ea309357d", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["fs/nfs/pagelist.c"], "versions": [{"version": "4.0", "status": "affected"}, {"version": "0", "lessThan": "4.0", "status": "unaffected", "versionType": "semver"}, {"version": "4.4.271", "lessThanOrEqual": "4.4.*", "status": "unaffected", "versionType": "semver"}, {"version": "4.9.271", "lessThanOrEqual": "4.9.*", "status": "unaffected", "versionType": "semver"}, {"version": "4.14.235", "lessThanOrEqual": "4.14.*", "status": "unaffected", "versionType": "semver"}, {"version": "4.19.193", "lessThanOrEqual": "4.19.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.4.124", "lessThanOrEqual": "5.4.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.10.42", "lessThanOrEqual": "5.10.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.12.9", "lessThanOrEqual": "5.12.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.13", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "references": [{"url": "https://git.kernel.org/stable/c/e8b8418ce14ae66ee55179901edd12191ab06a9e"}, {"url": "https://git.kernel.org/stable/c/b291baae24f876acd5a5dd57d0bb2bbac8a68b0c"}, {"url": "https://git.kernel.org/stable/c/c757c1f1e65d89429db1409429436cf40d47c008"}, {"url": "https://git.kernel.org/stable/c/40f139a6d50c232c0d1fd1c5e65a845c62db0ede"}, {"url": "https://git.kernel.org/stable/c/785917316b25685c9b3a2a88f933139f2de75e33"}, {"url": "https://git.kernel.org/stable/c/7087db95c0a06ab201b8ebfac6a7ec1e34257997"}, {"url": "https://git.kernel.org/stable/c/2fe1cac336b55a1f79e603e9ce3552c3623e90eb"}, {"url": "https://git.kernel.org/stable/c/0d0ea309357dea0d85a82815f02157eb7fcda39f"}], "title": "NFS: Don't corrupt the value of pg_bytes_written in nfs_do_recoalesce()", "x_generator": {"engine": "bippy-9e1c9544281a"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T05:24:39.936Z"}, "title": "CVE Program Container", "references": [{"url": "https://git.kernel.org/stable/c/e8b8418ce14ae66ee55179901edd12191ab06a9e", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/b291baae24f876acd5a5dd57d0bb2bbac8a68b0c", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/c757c1f1e65d89429db1409429436cf40d47c008", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/40f139a6d50c232c0d1fd1c5e65a845c62db0ede", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/785917316b25685c9b3a2a88f933139f2de75e33", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/7087db95c0a06ab201b8ebfac6a7ec1e34257997", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/2fe1cac336b55a1f79e603e9ce3552c3623e90eb", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/0d0ea309357dea0d85a82815f02157eb7fcda39f", "tags": ["x_transferred"]}]}, {"metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2021-47166", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-09-10T15:54:41.157060Z"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-11T17:33:53.540Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://git.kernel.org/stable/c/e8b8418ce14ae66ee55179901edd12191ab06a9e", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/b291baae24f876acd5a5dd57d0bb2bbac8a68b0c", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/c757c1f1e65d89429db1409429436cf40d47c008", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/40f139a6d50c232c0d1fd1c5e65a845c62db0ede", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/785917316b25685c9b3a2a88f933139f2de75e33", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/7087db95c0a06ab201b8ebfac6a7ec1e34257997", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/2fe1cac336b55a1f79e603e9ce3552c3623e90eb", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/0d0ea309357dea0d85a82815f02157eb7fcda39f", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T05:24:39.936Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2021-47166", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-09-10T15:54:41.157060Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-11T12:42:19.459Z"}}], "cna": {"title": "NFS: Don't corrupt the value of pg_bytes_written in nfs_do_recoalesce()", "affected": [{"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "vendor": "Linux", "product": "Linux", "versions": [{"status": "affected", "version": "a7d42ddb3099", "lessThan": "e8b8418ce14a", "versionType": "git"}, {"status": "affected", "version": "a7d42ddb3099", "lessThan": "b291baae24f8", "versionType": "git"}, {"status": "affected", "version": "a7d42ddb3099", "lessThan": "c757c1f1e65d", "versionType": "git"}, {"status": "affected", "version": "a7d42ddb3099", "lessThan": "40f139a6d50c", "versionType": "git"}, {"status": "affected", "version": "a7d42ddb3099", "lessThan": "785917316b25", "versionType": "git"}, {"status": "affected", "version": "a7d42ddb3099", "lessThan": "7087db95c0a0", "versionType": "git"}, {"status": "affected", "version": "a7d42ddb3099", "lessThan": "2fe1cac336b5", "versionType": "git"}, {"status": "affected", "version": "a7d42ddb3099", "lessThan": "0d0ea309357d", "versionType": "git"}], "programFiles": ["fs/nfs/pagelist.c"], "defaultStatus": "unaffected"}, {"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "vendor": "Linux", "product": "Linux", "versions": [{"status": "affected", "version": "4.0"}, {"status": "unaffected", "version": "0", "lessThan": "4.0", "versionType": "semver"}, {"status": "unaffected", "version": "4.4.271", "versionType": "semver", "lessThanOrEqual": "4.4.*"}, {"status": "unaffected", "version": "4.9.271", "versionType": "semver", "lessThanOrEqual": "4.9.*"}, {"status": "unaffected", "version": "4.14.235", "versionType": "semver", "lessThanOrEqual": "4.14.*"}, {"status": "unaffected", "version": "4.19.193", "versionType": "semver", "lessThanOrEqual": "4.19.*"}, {"status": "unaffected", "version": "5.4.124", "versionType": "semver", "lessThanOrEqual": "5.4.*"}, {"status": "unaffected", "version": "5.10.42", "versionType": "semver", "lessThanOrEqual": "5.10.*"}, {"status": "unaffected", "version": "5.12.9", "versionType": "semver", "lessThanOrEqual": "5.12.*"}, {"status": "unaffected", "version": "5.13", "versionType": "original_commit_for_fix", "lessThanOrEqual": "*"}], "programFiles": ["fs/nfs/pagelist.c"], "defaultStatus": "affected"}], "references": [{"url": "https://git.kernel.org/stable/c/e8b8418ce14ae66ee55179901edd12191ab06a9e"}, {"url": "https://git.kernel.org/stable/c/b291baae24f876acd5a5dd57d0bb2bbac8a68b0c"}, {"url": "https://git.kernel.org/stable/c/c757c1f1e65d89429db1409429436cf40d47c008"}, {"url": "https://git.kernel.org/stable/c/40f139a6d50c232c0d1fd1c5e65a845c62db0ede"}, {"url": "https://git.kernel.org/stable/c/785917316b25685c9b3a2a88f933139f2de75e33"}, {"url": "https://git.kernel.org/stable/c/7087db95c0a06ab201b8ebfac6a7ec1e34257997"}, {"url": "https://git.kernel.org/stable/c/2fe1cac336b55a1f79e603e9ce3552c3623e90eb"}, {"url": "https://git.kernel.org/stable/c/0d0ea309357dea0d85a82815f02157eb7fcda39f"}], "x_generator": {"engine": "bippy-9e1c9544281a"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFS: Don't corrupt the value of pg_bytes_written in nfs_do_recoalesce()\n\nThe value of mirror->pg_bytes_written should only be updated after a\nsuccessful attempt to flush out the requests on the list."}], "providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2024-11-04T12:00:41.598Z"}}}, "cveMetadata": {"cveId": "CVE-2021-47166", "state": "PUBLISHED", "dateUpdated": "2024-11-04T12:00:41.598Z", "dateReserved": "2024-03-25T09:12:14.110Z", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "datePublished": "2024-03-25T09:16:19.133Z", "assignerShortName": "Linux"}, "dataVersion": "5.1"}

{"bugzilla": {"description": "kernel: NFS: Don't corrupt the value of pg_bytes_written in nfs_do_recoalesce()", "id": "2271443", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271443"}, "csaw": false, "cvss3": {"cvss3_base_score": "5.5", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "status": "draft"}, "cwe": "CWE-99", "details": ["In the Linux kernel, the following vulnerability has been resolved:\nNFS: Don't corrupt the value of pg_bytes_written in nfs_do_recoalesce()\nThe value of mirror->pg_bytes_written should only be updated after a\nsuccessful attempt to flush out the requests on the list.", "A vulnerability was found in the NFS module in the Linux kernel where a memory corruption occurred in pg_bytes_written in the nfs_do_recoalesce() function. The value was updated before successfully flushing requests, potentially leading to incorrect accounting of written bytes."], "mitigation": {"lang": "en:us", "value": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible."}, "name": "CVE-2021-47166", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Out of support scope", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Out of support scope", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Out of support scope", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 9"}], "public_date": "2024-03-25T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2021-47166\nhttps://nvd.nist.gov/vuln/detail/CVE-2021-47166\nhttps://lore.kernel.org/linux-cve-announce/2024032535-CVE-2021-47166-6ab7@gregkh/T"], "threat_severity": "Moderate", "upstream_fix": "kernel 4.4.271, kernel 4.9.271, kernel 4.14.235, kernel 4.19.193, kernel 5.4.124, kernel 5.10.42, kernel 5.12.9, kernel 5.13"}