CVE-2021-43395

🗓️ 26 Dec 2022 06:15:10Reported by [email protected]Type

A deadlock and kernel panic vulnerability discovered in illumos, OmniOS, OpenIndiana, and SmartOS, allowing local unprivileged users to cause a denial of service (DoS) via crafted filesystem calls

Reporter	Title	Published	Views	Family All 18
BDU FSTEC	The vulnerability of the Oracle Solaris operating system’s file system allows a perpetrator to trigger a service failure.	30 Mar 202200:00	–	bdu_fstec
Circl	CVE-2021-43395	14 Apr 202516:53	–	circl
CNNVD	Oracle Solaris 访问控制错误漏洞	18 Jan 202200:00	–	cnnvd
CVE	CVE-2021-43395	26 Dec 202200:00	–	cve
Cvelist	CVE-2021-43395	26 Dec 202200:00	–	cvelist
EUVD	EUVD-2021-30330	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in Oracle Systems	19 Jan 202200:00	–	ncsc
Oracle	Oracle Critical Patch Update Advisory - April 2022	19 Apr 202200:00	–	oracle
Oracle	Oracle Critical Patch Update Advisory - January 2022	18 Jan 202200:00	–	oracle
OSV	CVE-2021-43395	26 Dec 202206:15	–	osv

NVD

Node

illumos illumosRange<2022-01-18

Node

omniosce omniosMatchr151038community

Node

openindiana openindianaMatchhipster_2021.04

Node

joyent smartosMatch20210923

Node

oracle solarisMatch10

oracle solarisMatch11

Source	Link
tribblix	www.tribblix.org/relnotes.html
oracle	www.oracle.com/security-alerts/cpujan2022.html
github	www.github.com/illumos/illumos-gate/commit/f859e7171bb5db34321e45585839c6c3200ebb90
github	www.github.com/illumos/illumos-gate/blob/b3403853e80914bd0aade9b5b605da4878078173/usr/src/uts/common/fs/tmpfs/tmp_dir.c
github	www.github.com/illumos/illumos-gate/blob/069654420de4aade43c63c43cd2896e66945fc8a/usr/src/uts/common/fs/tmpfs/tmp_vnops.c
kebe	www.kebe.com/blog/
illumos	www.illumos.org/issues/14424
jgardner100	www.jgardner100.wordpress.com/2022/01/20/security-heads-up/
illumos	www.illumos.topicbox.com/groups/developer/T1c9e4f27f8c2f959/security-heads-up-illumos14424

14 Apr 2025 16:15Current

CVSS 3.15.5

EPSS0.00034

CWE-667