CVE-2021-46950
7.8
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
md/raid1: properly indicate failure when ending a failed write request
This patch addresses a data corruption bug in raid1 arrays using bitmaps. Without this fix, the bitmap bits for the failed I/O end up being cleared.
Since we are in the failure leg of raid1_end_write_request, the request either needs to be retried (R1BIO_WriteError) or failed (R1BIO_Degraded).
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 900c531899f5ee2321bef79e20055787bc73251d < 12216d0919b64ee2ea5dc7a50e455670f44383d5 | affected |
| Linux | Linux | 1cd972e0a10760a1fa27d9830d78446c891c23b6 < a6e17cab00fc5bf85472434c52ac751426257c6f | affected |
| Linux | Linux | eeba6809d8d58908b5ed1b5ceb5fcb09a98a7cad < 6920cef604fa57f9409e3960413e9cc11f5c5a40 | affected |
| Linux | Linux | eeba6809d8d58908b5ed1b5ceb5fcb09a98a7cad < 661061a45e32d8b2cc0e306da9f169ad44011382 | affected |
| Linux | Linux | eeba6809d8d58908b5ed1b5ceb5fcb09a98a7cad < 59452e551784b7a57a45d971727e9db63b192515 | affected |
| Linux | Linux | eeba6809d8d58908b5ed1b5ceb5fcb09a98a7cad < 538244fba59fde17186322776247cd9c05be86dd | affected |
| Linux | Linux | eeba6809d8d58908b5ed1b5ceb5fcb09a98a7cad < 2417b9869b81882ab90fd5ed1081a1cb2d4db1dd | affected |
| Linux | Linux | a1f4fcb880988a96c0b2d5c3305ffc4e49eca0ed | affected |
| Linux | Linux | 344242d50f468a250bf4b6136934392758412ed8 | affected |
| Linux | Linux | 4.14.147 < 4.14.233 | affected |
| Linux | Linux | 4.19.77 < 4.19.191 | affected |
| Linux | Linux | 5.2.19 < 5.3 | affected |
| Linux | Linux | 5.3.4 < 5.4 | affected |
| Linux | Linux | 5.4 | affected |
| Linux | Linux | 0 < 5.4 | unaffected |
| Linux | Linux | 4.14.233 <= 4.14.* | unaffected |
| Linux | Linux | 4.19.191 <= 4.19.* | unaffected |
| Linux | Linux | 5.4.118 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.36 <= 5.10.* | unaffected |
| Linux | Linux | 5.11.20 <= 5.11.* | unaffected |
| Linux | Linux | 5.12.3 <= 5.12.* | unaffected |
| Linux | Linux | 5.13 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
CVE Program Container
Additional References
- https://git.kernel.org/stable/c/12216d0919b64ee2ea5dc7a50e455670f44383d5
- https://git.kernel.org/stable/c/a6e17cab00fc5bf85472434c52ac751426257c6f
- https://git.kernel.org/stable/c/6920cef604fa57f9409e3960413e9cc11f5c5a40
- https://git.kernel.org/stable/c/661061a45e32d8b2cc0e306da9f169ad44011382
- https://git.kernel.org/stable/c/59452e551784b7a57a45d971727e9db63b192515
- https://git.kernel.org/stable/c/538244fba59fde17186322776247cd9c05be86dd
- https://git.kernel.org/stable/c/2417b9869b81882ab90fd5ed1081a1cb2d4db1dd
References
- https://git.kernel.org/stable/c/12216d0919b64ee2ea5dc7a50e455670f44383d5
- https://git.kernel.org/stable/c/a6e17cab00fc5bf85472434c52ac751426257c6f
- https://git.kernel.org/stable/c/6920cef604fa57f9409e3960413e9cc11f5c5a40
- https://git.kernel.org/stable/c/661061a45e32d8b2cc0e306da9f169ad44011382
- https://git.kernel.org/stable/c/59452e551784b7a57a45d971727e9db63b192515
- https://git.kernel.org/stable/c/538244fba59fde17186322776247cd9c05be86dd
- https://git.kernel.org/stable/c/2417b9869b81882ab90fd5ed1081a1cb2d4db1dd
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.