CVE-2021-4090 — Out-of-bounds Write in Kernel

CWE-787 — Out-of-bounds Write12 documents7 sources

Severity

7.1HIGHNVD

OSV6.5OSV4.7

EPSS

0.1%

top 80.77%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Kernel Debian Linux Msrc Cbl2 Kernel 5.15.26.1-1 ON CBL Mariner 2.0 +1 more

Timeline

PublishedFeb 18

Latest updateApr 1

Description

An out-of-bounds (OOB) memory write flaw was found in the NFSD in the Linux kernel. Missing sanity may lead to a write beyond bmval[bmlen-1] in nfsd4_decode_bitmap4 in fs/nfsd/nfs4xdr.c. In this flaw, a local attacker with user privilege may gain access to out-of-bounds memory, leading to a system integrity and confidentiality threat.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:NExploitability: 1.8 | Impact: 5.2

Affected Packages6 packages

▶NVDlinux/linux_kernel< 5.16+1

▶Debianlinux/linux_kernel< 5.15.5-1+2

▶CVEListV5linux/linux_kernelkernel 5.16 rc2

▶debiandebian/linux< linux 5.15.5-1 (bookworm)

▶msrcmsrc/cbl2_kernel_5.15.26.1-1_on_cbl_mariner_2.0

Patches

Patch: bugzilla.redhat.com ↗Patch: bugzilla.redhat.com ↗

🔴Vulnerability Details

OSV

linux-intel-5.13 vulnerabilities↗2022-04-01

▶

GHSA

GHSA-rwxr-f4qj-9x36: An out-of-bounds (OOB) memory write flaw was found in the NFSD in the Linux kernel↗2022-02-19

▶

OSV

CVE-2021-4090: An out-of-bounds (OOB) memory write flaw was found in the NFSD in the Linux kernel↗2022-02-18

▶

OSV

linux, linux-aws, linux-aws-5.11, linux-aws-5.13, linux-azure-5.11, linux-gcp, linux-gcp-5.11, linux-hwe-5.13, linux-kvm, linux-oem-5.13, linux-oracle, linux-oracle-5.11, linux-raspi vulnerabilities↗2022-02-03

▶

OSV

linux-oem-5.14 vulnerabilities↗2022-01-11

▶

📋Vendor Advisories

Ubuntu

Linux kernel (Intel IOTG) vulnerabilities↗2022-04-01

▶

Microsoft

▶

Ubuntu

Linux kernel vulnerabilities↗2022-02-03

▶

Ubuntu

Linux kernel (OEM) vulnerabilities↗2022-01-11

▶

Red Hat

kernel: Overflow of bmval[bmlen-1] in nfsd4_decode_bitmap function↗2021-11-13

▶