CVE-2021-45868 — Use After Free in Kernel

CWE-416 — Use After Free11 documents7 sources

Severity

5.5MEDIUMNVD

OSV5.9

EPSS

0.4%

top 39.39%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Kernel Debian Linux Msrc CM1 Kernel 5.10.109.1-2 ON CBL Mariner 1.0

Timeline

PublishedMar 18

Latest updateApr 12

Description

In the Linux kernel before 5.15.3, fs/quota/quota_tree.c does not validate the block number in the quota tree (on disk). This can, for example, lead to a kernel/locking/rwsem.c use-after-free if there is a corrupted quota file.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages5 packages

▶NVDlinux/linux_kernel< 5.15.3

▶Debianlinux/linux_kernel< 5.10.84-1+3

▶Ubuntulinux/linux_kernel< 4.4.0-239.273

▶msrcmsrc/cm1_kernel_5.10.109.1-2_on_cbl_mariner_1.0

▶debiandebian/linux< linux 5.15.3-1 (bookworm)

Patches

Patch: git.kernel.org ↗Patch: www.openwall.com ↗Patch: www.openwall.com ↗

🔴Vulnerability Details

OSV

linux, linux-kvm, linux-lts-xenial vulnerabilities↗2023-04-12

▶

OSV

linux-aws vulnerabilities↗2023-04-06

▶

GHSA

GHSA-99wm-68jg-pfgc: In the Linux kernel before 5↗2022-03-19

▶

OSV

CVE-2021-45868: In the Linux kernel before 5↗2022-03-18

▶

📋Vendor Advisories

Ubuntu

Linux kernel (AWS) vulnerabilities↗2023-04-12

▶

Ubuntu

Linux kernel vulnerabilities↗2023-04-12

▶

Ubuntu

Linux kernel (AWS) vulnerabilities↗2023-04-06

▶

Red Hat

kernel: fs/quota/quota_tree.c does not validate the block number in the quota tree↗2022-03-18

▶

Microsoft

In the Linux kernel before 5.15.3 fs/quota/quota_tree.c does not validate the block number in the quota tree (on disk). This can for example lead to a kernel/locking/rwsem.c use-after-free if there is↗2022-03-08

▶