CVE-2021-47336 - OpenCVE

In the Linux kernel, the following vulnerability has been resolved: smackfs: restrict bytes count in smk_set_cipso() Oops, I failed to update subject line. From 07571157c91b98ce1a4aa70967531e64b78e8346 Mon Sep 17 00:00:00 2001 Date: Mon, 12 Apr 2021 22:25:06 +0900 Subject: [PATCH] smackfs: restrict bytes count in smk_set_cipso() Commit 7ef4c19d245f3dc2 ("smackfs: restrict bytes count in smackfs write functions") missed that count > SMK_CIPSOMAX check applies to only format == SMK_FIXED24_FMT case.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact partial

No data.

No data.

No data.

References

Link	Providers
https://git.kernel.org/stable/c/135122f174c357b7a3e58f40fa5792156c5e93e6
https://git.kernel.org/stable/c/258fd821f69378453c071b9dd767b298810fc766
https://git.kernel.org/stable/c/3780348c1a0e14ffefcaf1fc521f815bcaac94b0
https://git.kernel.org/stable/c/49ec114a6e62d8d320037ce71c1aaf9650b3cafd
https://git.kernel.org/stable/c/5c2dca9a7a7ff6a2df34158903515e2e4fd3d2b2
https://git.kernel.org/stable/c/5f9880403e6b71d56924748ba331daf836243fca
https://git.kernel.org/stable/c/8f5c773a2871cf446e3f36b2834fb25bbb28512b
https://git.kernel.org/stable/c/cbd87ba6a13891acf6180783f8234a8b7a3e3d4d
https://nvd.nist.gov/vuln/detail/CVE-2021-47336
https://www.cve.org/CVERecord?id=CVE-2021-47336

History

No history.

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2024-05-21T14:35:45.744Z

Updated: 2024-11-04T12:03:55.742Z

Reserved: 2024-05-21T14:28:16.978Z

Link: CVE-2021-47336

Vulnrichment

Updated: 2024-08-04T05:32:08.568Z

NVD

Status : Awaiting Analysis

Published: 2024-05-21T15:15:20.437

Modified: 2024-05-21T16:54:26.047

Link: CVE-2021-47336

Redhat

Severity : Low

Publid Date: 2024-05-21T00:00:00Z

Links: CVE-2021-47336 - Bugzilla

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2021-47336", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2024-05-21T14:28:16.978Z", "datePublished": "2024-05-21T14:35:45.744Z", "dateUpdated": "2024-11-04T12:03:55.742Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2024-11-04T12:03:55.742Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmackfs: restrict bytes count in smk_set_cipso()\n\nOops, I failed to update subject line.\n\nFrom 07571157c91b98ce1a4aa70967531e64b78e8346 Mon Sep 17 00:00:00 2001\nDate: Mon, 12 Apr 2021 22:25:06 +0900\nSubject: [PATCH] smackfs: restrict bytes count in smk_set_cipso()\n\nCommit 7ef4c19d245f3dc2 (\"smackfs: restrict bytes count in smackfs write\nfunctions\") missed that count > SMK_CIPSOMAX check applies to only\nformat == SMK_FIXED24_FMT case."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["security/smack/smackfs.c"], "versions": [{"version": "1da177e4c3f4", "lessThan": "5f9880403e6b", "status": "affected", "versionType": "git"}, {"version": "1da177e4c3f4", "lessThan": "5c2dca9a7a7f", "status": "affected", "versionType": "git"}, {"version": "1da177e4c3f4", "lessThan": "cbd87ba6a138", "status": "affected", "versionType": "git"}, {"version": "1da177e4c3f4", "lessThan": "135122f174c3", "status": "affected", "versionType": "git"}, {"version": "1da177e4c3f4", "lessThan": "3780348c1a0e", "status": "affected", "versionType": "git"}, {"version": "1da177e4c3f4", "lessThan": "8f5c773a2871", "status": "affected", "versionType": "git"}, {"version": "1da177e4c3f4", "lessThan": "258fd821f693", "status": "affected", "versionType": "git"}, {"version": "1da177e4c3f4", "lessThan": "49ec114a6e62", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["security/smack/smackfs.c"], "versions": [{"version": "4.9.276", "lessThanOrEqual": "4.9.*", "status": "unaffected", "versionType": "semver"}, {"version": "4.14.240", "lessThanOrEqual": "4.14.*", "status": "unaffected", "versionType": "semver"}, {"version": "4.19.198", "lessThanOrEqual": "4.19.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.4.133", "lessThanOrEqual": "5.4.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.10.51", "lessThanOrEqual": "5.10.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.12.18", "lessThanOrEqual": "5.12.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.13.3", "lessThanOrEqual": "5.13.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.14", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "references": [{"url": "https://git.kernel.org/stable/c/5f9880403e6b71d56924748ba331daf836243fca"}, {"url": "https://git.kernel.org/stable/c/5c2dca9a7a7ff6a2df34158903515e2e4fd3d2b2"}, {"url": "https://git.kernel.org/stable/c/cbd87ba6a13891acf6180783f8234a8b7a3e3d4d"}, {"url": "https://git.kernel.org/stable/c/135122f174c357b7a3e58f40fa5792156c5e93e6"}, {"url": "https://git.kernel.org/stable/c/3780348c1a0e14ffefcaf1fc521f815bcaac94b0"}, {"url": "https://git.kernel.org/stable/c/8f5c773a2871cf446e3f36b2834fb25bbb28512b"}, {"url": "https://git.kernel.org/stable/c/258fd821f69378453c071b9dd767b298810fc766"}, {"url": "https://git.kernel.org/stable/c/49ec114a6e62d8d320037ce71c1aaf9650b3cafd"}], "title": "smackfs: restrict bytes count in smk_set_cipso()", "x_generator": {"engine": "bippy-9e1c9544281a"}}, "adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2021-47336", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-05-21T18:44:23.247823Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-06-04T17:13:53.067Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T05:32:08.568Z"}, "title": "CVE Program Container", "references": [{"url": "https://git.kernel.org/stable/c/5f9880403e6b71d56924748ba331daf836243fca", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/5c2dca9a7a7ff6a2df34158903515e2e4fd3d2b2", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/cbd87ba6a13891acf6180783f8234a8b7a3e3d4d", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/135122f174c357b7a3e58f40fa5792156c5e93e6", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/3780348c1a0e14ffefcaf1fc521f815bcaac94b0", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/8f5c773a2871cf446e3f36b2834fb25bbb28512b", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/258fd821f69378453c071b9dd767b298810fc766", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/49ec114a6e62d8d320037ce71c1aaf9650b3cafd", "tags": ["x_transferred"]}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://git.kernel.org/stable/c/5f9880403e6b71d56924748ba331daf836243fca", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/5c2dca9a7a7ff6a2df34158903515e2e4fd3d2b2", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/cbd87ba6a13891acf6180783f8234a8b7a3e3d4d", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/135122f174c357b7a3e58f40fa5792156c5e93e6", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/3780348c1a0e14ffefcaf1fc521f815bcaac94b0", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/8f5c773a2871cf446e3f36b2834fb25bbb28512b", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/258fd821f69378453c071b9dd767b298810fc766", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/49ec114a6e62d8d320037ce71c1aaf9650b3cafd", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T05:32:08.568Z"}}, {"metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2021-47336", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-05-21T18:44:23.247823Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-05-23T19:01:25.467Z"}, "title": "CISA ADP Vulnrichment"}], "cna": {"title": "smackfs: restrict bytes count in smk_set_cipso()", "affected": [{"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "vendor": "Linux", "product": "Linux", "versions": [{"status": "affected", "version": "1da177e4c3f4", "lessThan": "5f9880403e6b", "versionType": "git"}, {"status": "affected", "version": "1da177e4c3f4", "lessThan": "5c2dca9a7a7f", "versionType": "git"}, {"status": "affected", "version": "1da177e4c3f4", "lessThan": "cbd87ba6a138", "versionType": "git"}, {"status": "affected", "version": "1da177e4c3f4", "lessThan": "135122f174c3", "versionType": "git"}, {"status": "affected", "version": "1da177e4c3f4", "lessThan": "3780348c1a0e", "versionType": "git"}, {"status": "affected", "version": "1da177e4c3f4", "lessThan": "8f5c773a2871", "versionType": "git"}, {"status": "affected", "version": "1da177e4c3f4", "lessThan": "258fd821f693", "versionType": "git"}, {"status": "affected", "version": "1da177e4c3f4", "lessThan": "49ec114a6e62", "versionType": "git"}], "programFiles": ["security/smack/smackfs.c"], "defaultStatus": "unaffected"}, {"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "vendor": "Linux", "product": "Linux", "versions": [{"status": "unaffected", "version": "4.9.276", "versionType": "semver", "lessThanOrEqual": "4.9.*"}, {"status": "unaffected", "version": "4.14.240", "versionType": "semver", "lessThanOrEqual": "4.14.*"}, {"status": "unaffected", "version": "4.19.198", "versionType": "semver", "lessThanOrEqual": "4.19.*"}, {"status": "unaffected", "version": "5.4.133", "versionType": "semver", "lessThanOrEqual": "5.4.*"}, {"status": "unaffected", "version": "5.10.51", "versionType": "semver", "lessThanOrEqual": "5.10.*"}, {"status": "unaffected", "version": "5.12.18", "versionType": "semver", "lessThanOrEqual": "5.12.*"}, {"status": "unaffected", "version": "5.13.3", "versionType": "semver", "lessThanOrEqual": "5.13.*"}, {"status": "unaffected", "version": "5.14", "versionType": "original_commit_for_fix", "lessThanOrEqual": "*"}], "programFiles": ["security/smack/smackfs.c"], "defaultStatus": "affected"}], "references": [{"url": "https://git.kernel.org/stable/c/5f9880403e6b71d56924748ba331daf836243fca"}, {"url": "https://git.kernel.org/stable/c/5c2dca9a7a7ff6a2df34158903515e2e4fd3d2b2"}, {"url": "https://git.kernel.org/stable/c/cbd87ba6a13891acf6180783f8234a8b7a3e3d4d"}, {"url": "https://git.kernel.org/stable/c/135122f174c357b7a3e58f40fa5792156c5e93e6"}, {"url": "https://git.kernel.org/stable/c/3780348c1a0e14ffefcaf1fc521f815bcaac94b0"}, {"url": "https://git.kernel.org/stable/c/8f5c773a2871cf446e3f36b2834fb25bbb28512b"}, {"url": "https://git.kernel.org/stable/c/258fd821f69378453c071b9dd767b298810fc766"}, {"url": "https://git.kernel.org/stable/c/49ec114a6e62d8d320037ce71c1aaf9650b3cafd"}], "x_generator": {"engine": "bippy-9e1c9544281a"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmackfs: restrict bytes count in smk_set_cipso()\n\nOops, I failed to update subject line.\n\nFrom 07571157c91b98ce1a4aa70967531e64b78e8346 Mon Sep 17 00:00:00 2001\nDate: Mon, 12 Apr 2021 22:25:06 +0900\nSubject: [PATCH] smackfs: restrict bytes count in smk_set_cipso()\n\nCommit 7ef4c19d245f3dc2 (\"smackfs: restrict bytes count in smackfs write\nfunctions\") missed that count > SMK_CIPSOMAX check applies to only\nformat == SMK_FIXED24_FMT case."}], "providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2024-11-04T12:03:55.742Z"}}}, "cveMetadata": {"cveId": "CVE-2021-47336", "state": "PUBLISHED", "dateUpdated": "2024-11-04T12:03:55.742Z", "dateReserved": "2024-05-21T14:28:16.978Z", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "datePublished": "2024-05-21T14:35:45.744Z", "assignerShortName": "Linux"}, "dataVersion": "5.1"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmackfs: restrict bytes count in smk_set_cipso()\n\nOops, I failed to update subject line.\n\nFrom 07571157c91b98ce1a4aa70967531e64b78e8346 Mon Sep 17 00:00:00 2001\nDate: Mon, 12 Apr 2021 22:25:06 +0900\nSubject: [PATCH] smackfs: restrict bytes count in smk_set_cipso()\n\nCommit 7ef4c19d245f3dc2 (\"smackfs: restrict bytes count in smackfs write\nfunctions\") missed that count > SMK_CIPSOMAX check applies to only\nformat == SMK_FIXED24_FMT case."}, {"lang": "es", "value": " En el kernel de Linux, se resolvi\u00f3 la siguiente vulnerabilidad: smackfs: restringir el recuento de bytes en smk_set_cipso() Oops, no pude actualizar la l\u00ednea de asunto. De 07571157c91b98ce1a4aa70967531e64b78e8346 lunes 17 de septiembre 00:00:00 2001 Fecha: lunes 12 de abril de 2021 22:25:06 +0900 Asunto: [PATCH] smackfs: restringir el recuento de bytes en smk_set_cipso() Confirmaci\u00f3n 7ef4c1 9d245f3dc2 (\"smackfs: restringir el recuento de bytes en smackfs funciones de escritura\") perdi\u00f3 ese recuento > La verificaci\u00f3n SMK_CIPSOMAX se aplica solo al formato == caso SMK_FIXED24_FMT."}], "id": "CVE-2021-47336", "lastModified": "2024-05-21T16:54:26.047", "metrics": {}, "published": "2024-05-21T15:15:20.437", "references": [{"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/135122f174c357b7a3e58f40fa5792156c5e93e6"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/258fd821f69378453c071b9dd767b298810fc766"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/3780348c1a0e14ffefcaf1fc521f815bcaac94b0"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/49ec114a6e62d8d320037ce71c1aaf9650b3cafd"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/5c2dca9a7a7ff6a2df34158903515e2e4fd3d2b2"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/5f9880403e6b71d56924748ba331daf836243fca"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/8f5c773a2871cf446e3f36b2834fb25bbb28512b"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/cbd87ba6a13891acf6180783f8234a8b7a3e3d4d"}], "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "vulnStatus": "Awaiting Analysis"}