Lucene search

K
cvelistRedhatCVELIST:CVE-2021-3428
HistoryMar 04, 2022 - 5:19 p.m.

CVE-2021-3428

2022-03-0417:19:22
CWE-190
redhat
www.cve.org
8
linux
kernel
denial of service
ext4 filesystem
integer overflow

AI Score

6.6

Confidence

High

EPSS

0

Percentile

5.1%

A flaw was found in the Linux kernel. A denial of service problem is identified if an extent tree is corrupted in a crafted ext4 filesystem in fs/ext4/extents.c in ext4_es_cache_extent. Fabricating an integer overflow, A local attacker with a special user privilege may cause a system crash problem which can lead to an availability threat.

CNA Affected

[
  {
    "product": "kernel",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Affects linux kernel before v5.9."
      }
    ]
  }
]