CVE-2021-47432 - OpenCVE

In the Linux kernel, the following vulnerability has been resolved: lib/generic-radix-tree.c: Don't overflow in peek() When we started spreading new inode numbers throughout most of the 64 bit inode space, that triggered some corner case bugs, in particular some integer overflows related to the radix tree code. Oops.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Redhat	Enterprise Linux

No data.

Package	CPE	Advisory	Released Date
Red Hat Enterprise Linux 8
kernel-rt-0:4.18.0-553.22.1.rt7.363.el8_10	cpe:/a:redhat:enterprise_linux:8::nfv	RHSA-2024:7001	2024-09-24T00:00:00Z
kernel-0:4.18.0-553.22.1.el8_10	cpe:/o:redhat:enterprise_linux:8	RHSA-2024:7000	2024-09-24T00:00:00Z

References

Link	Providers
https://git.kernel.org/stable/c/784d01f9bbc282abb0c5ade5beb98a87f50343ac
https://git.kernel.org/stable/c/9492261ff2460252cf2d8de89cdf854c7e2b28a0
https://git.kernel.org/stable/c/aa7f1827953100cdde0795289a80c6c077bfe437
https://git.kernel.org/stable/c/ec298b958cb0c40d70c68079da933c8f31c5134c
https://lore.kernel.org/linux-cve-announce/2024052143-CVE-2021-47432-5e69@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2021-47432
https://www.cve.org/CVERecord?id=CVE-2021-47432

History

Tue, 24 Sep 2024 11:15:00 +0000

Type	Values Removed	Values Added
CPEs		cpe:/o:redhat:enterprise_linux:8

Tue, 24 Sep 2024 06:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Redhat Redhat enterprise Linux
CPEs		cpe:/a:redhat:enterprise_linux:8::nfv
Vendors & Products		Redhat Redhat enterprise Linux

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2024-05-21T15:30:36.904Z

Updated: 2024-08-04T05:39:59.326Z

Reserved: 2024-05-21T14:58:30.829Z

Link: CVE-2021-47432

Vulnrichment

Updated: 2024-08-04T05:39:59.326Z

NVD

Status : Awaiting Analysis

Published: 2024-05-21T16:15:12.007

Modified: 2024-05-21T16:53:56.550

Link: CVE-2021-47432

Redhat

Severity : Low

Publid Date: 2024-05-21T00:00:00Z

Links: CVE-2021-47432 - Bugzilla

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Affected Vendors & Products

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object