← Zuruck zu CVEs

CVE-2021-47478

MEDIUM

5.5

Beschreibung

In the Linux kernel, the following vulnerability has been resolved: isofs: Fix out of bound access for corrupted isofs image When isofs image is suitably corrupted isofs_read_inode() can read data beyond the end of buffer. Sanity-check the directory entry length before using it.

CVE Details

CVSS v3.1 Bewertung5.5

SchweregradMEDIUM

CVSS VektorCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

AngriffsvektorLOCAL

KomplexitatLOW

Erforderliche PrivilegienLOW

BenutzerinteraktionNONE

Veroffentlicht5/22/2024

Zuletzt geandert4/2/2025

Quellenvd

Honeypot-Sichtungen0

Betroffene Produkte

linux:linux_kernel

Schwachen (CWE)

CWE-125

Referenzen

https://git.kernel.org/stable/c/156ce5bb6cc43a80a743810199defb1dc3f55b7f(416baaa9-dc9f-4396-8d5f-8c081fb06d67)

https://git.kernel.org/stable/c/6e80e9314f8bb52d9eabe1907698718ff01120f5(416baaa9-dc9f-4396-8d5f-8c081fb06d67)

https://git.kernel.org/stable/c/86d4aedcbc69c0f84551fb70f953c24e396de2d7(416baaa9-dc9f-4396-8d5f-8c081fb06d67)

https://git.kernel.org/stable/c/9ec33a9b8790c212cc926a88c5e2105f97f3f57e(416baaa9-dc9f-4396-8d5f-8c081fb06d67)

https://git.kernel.org/stable/c/afbd40f425227e661d991757e11cc4db024e761f(416baaa9-dc9f-4396-8d5f-8c081fb06d67)

https://git.kernel.org/stable/c/b0ddff8d68f2e43857a84dce54c3deab181c8ae1(416baaa9-dc9f-4396-8d5f-8c081fb06d67)

https://git.kernel.org/stable/c/b2fa1f52d22c5455217b294629346ad23a744945(416baaa9-dc9f-4396-8d5f-8c081fb06d67)

https://git.kernel.org/stable/c/e7fb722586a2936b37bdff096c095c30ca06404d(416baaa9-dc9f-4396-8d5f-8c081fb06d67)

https://git.kernel.org/stable/c/e96a1866b40570b5950cda8602c2819189c62a48(416baaa9-dc9f-4396-8d5f-8c081fb06d67)

https://git.kernel.org/stable/c/156ce5bb6cc43a80a743810199defb1dc3f55b7f(af854a3a-2127-422b-91ae-364da2661108)

https://git.kernel.org/stable/c/6e80e9314f8bb52d9eabe1907698718ff01120f5(af854a3a-2127-422b-91ae-364da2661108)

https://git.kernel.org/stable/c/86d4aedcbc69c0f84551fb70f953c24e396de2d7(af854a3a-2127-422b-91ae-364da2661108)

https://git.kernel.org/stable/c/9ec33a9b8790c212cc926a88c5e2105f97f3f57e(af854a3a-2127-422b-91ae-364da2661108)

https://git.kernel.org/stable/c/afbd40f425227e661d991757e11cc4db024e761f(af854a3a-2127-422b-91ae-364da2661108)

https://git.kernel.org/stable/c/b0ddff8d68f2e43857a84dce54c3deab181c8ae1(af854a3a-2127-422b-91ae-364da2661108)

https://git.kernel.org/stable/c/b2fa1f52d22c5455217b294629346ad23a744945(af854a3a-2127-422b-91ae-364da2661108)

https://git.kernel.org/stable/c/e7fb722586a2936b37bdff096c095c30ca06404d(af854a3a-2127-422b-91ae-364da2661108)

https://git.kernel.org/stable/c/e96a1866b40570b5950cda8602c2819189c62a48(af854a3a-2127-422b-91ae-364da2661108)

IOC Korrelationen

Keine Korrelationen erfasst

This product uses data from the NVD API but is not endorsed or certified by the NVD.