CVE-2021-47166

Summary

In the Linux kernel, the following vulnerability has been resolved:

NFS: Don't corrupt the value of pg_bytes_written in nfs_do_recoalesce()

The value of mirror->pg_bytes_written should only be updated after a successful attempt to flush out the requests on the list.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxa7d42ddb3099727f58366fa006f850a219cce6c8 < e8b8418ce14ae66ee55179901edd12191ab06a9eaffected
LinuxLinuxa7d42ddb3099727f58366fa006f850a219cce6c8 < b291baae24f876acd5a5dd57d0bb2bbac8a68b0caffected
LinuxLinuxa7d42ddb3099727f58366fa006f850a219cce6c8 < c757c1f1e65d89429db1409429436cf40d47c008affected
LinuxLinuxa7d42ddb3099727f58366fa006f850a219cce6c8 < 40f139a6d50c232c0d1fd1c5e65a845c62db0edeaffected
LinuxLinuxa7d42ddb3099727f58366fa006f850a219cce6c8 < 785917316b25685c9b3a2a88f933139f2de75e33affected
LinuxLinuxa7d42ddb3099727f58366fa006f850a219cce6c8 < 7087db95c0a06ab201b8ebfac6a7ec1e34257997affected
LinuxLinuxa7d42ddb3099727f58366fa006f850a219cce6c8 < 2fe1cac336b55a1f79e603e9ce3552c3623e90ebaffected
LinuxLinuxa7d42ddb3099727f58366fa006f850a219cce6c8 < 0d0ea309357dea0d85a82815f02157eb7fcda39faffected
LinuxLinux4.0affected
LinuxLinux0 < 4.0unaffected
LinuxLinux4.4.271 <= 4.4.*unaffected
LinuxLinux4.9.271 <= 4.9.*unaffected
LinuxLinux4.14.235 <= 4.14.*unaffected
LinuxLinux4.19.193 <= 4.19.*unaffected
LinuxLinux5.4.124 <= 5.4.*unaffected
LinuxLinux5.10.42 <= 5.10.*unaffected
LinuxLinux5.12.9 <= 5.12.*unaffected
LinuxLinux5.13 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References