Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2021-47353HistoryMay 21, 2024 - 3:15 p.m.
CVE-2021-47353
2024-05-2115:15:21
Debian Security Bug Tracker
security-tracker.debian.org
linux kernel
udf_symlink
null pointer
vulnerability
fix
In the Linux kernel, the following vulnerability has been resolved: udf: Fix NULL pointer dereference in udf_symlink function In function udf_symlink, epos.bh is assigned with the value returned by udf_tgetblk. The function udf_tgetblk is defined in udf/misc.c and returns the value of sb_getblk function that could be NULL. Then, epos.bh is used without any check, causing a possible NULL pointer dereference when sb_getblk fails. This fix adds a check to validate the value of epos.bh.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | linux | < 5.14.6-1 | linux_5.14.6-1_all.deb |
| Debian | 11 | all | linux | < 5.10.70-1 | linux_5.10.70-1_all.deb |
| Debian | 999 | all | linux | < 5.14.6-1 | linux_5.14.6-1_all.deb |
| Debian | 13 | all | linux | < 5.14.6-1 | linux_5.14.6-1_all.deb |
Related
redhatcve
redhatcve
CVE-2021-47353
2024-05-22 11:26:41
nvd
nvd
CVE-2021-47353
2024-05-21 15:15:21
cvelist
cvelist
CVE-2021-47353 udf: Fix NULL pointer dereference in udf_symlink function
2024-05-21 14:35:57
ubuntucve
ubuntucve
CVE-2021-47353
2024-05-21 00:00:00
vulnrichment
vulnrichment
CVE-2021-47353 udf: Fix NULL pointer dereference in udf_symlink function
2024-05-21 14:35:57
cve
cve
CVE-2021-47353
2024-05-21 15:15:21
nessus
nessus
SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2024:2184-1)
2024-06-25 00:00:00
SUSE SLES15 Security Update : kernel (SUSE-SU-2024:2185-1)
2024-06-25 00:00:00
SUSE SLES12 Security Update : kernel (SUSE-SU-2024:1983-1)
2024-06-12 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2024:1979-1)
2024-06-12 00:00:00
6.9 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
13.2%
Related for DEBIANCVE:CVE-2021-47353