CVE-2021-47432

Summary

In the Linux kernel, the following vulnerability has been resolved:

lib/generic-radix-tree.c: Don't overflow in peek()

When we started spreading new inode numbers throughout most of the 64 bit inode space, that triggered some corner case bugs, in particular some integer overflows related to the radix tree code. Oops.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxba20ba2e3743bac786dff777954c11930256075e < 784d01f9bbc282abb0c5ade5beb98a87f50343acaffected
LinuxLinuxba20ba2e3743bac786dff777954c11930256075e < ec298b958cb0c40d70c68079da933c8f31c5134caffected
LinuxLinuxba20ba2e3743bac786dff777954c11930256075e < aa7f1827953100cdde0795289a80c6c077bfe437affected
LinuxLinuxba20ba2e3743bac786dff777954c11930256075e < 9492261ff2460252cf2d8de89cdf854c7e2b28a0affected
LinuxLinux5.1affected
LinuxLinux0 < 5.1unaffected
LinuxLinux6.1.64 <= 6.1.*unaffected
LinuxLinux6.5.13 <= 6.5.*unaffected
LinuxLinux6.6.3 <= 6.6.*unaffected
LinuxLinux6.7 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References