Denial Of Service (DoS)

2021-09-3013:39:21

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

6.5 Medium

CVSS3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

3.3 Low

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:A/AC:L/Au:N/C:N/I:N/A:P

JSON

linux is vulnerable to denial of service. The vulnerability exists due to an incorrect connection-setup ordering in fs/nfs/nfs4client.c.

CPENameOperatorVersion
linux-aws:focaleq5.4.0.1024.25
linux-aws:focaleq5.4.0.1021.22
linux-aws:focaleq5.4.0.1029.30
linux-aws:focaleq5.4.0.1025.26
linux-aws:focaleq5.4.0.1030.31
linux-aws:focaleq5.4.0.1022.23
linux-aws:focaleq5.4.0.1009.11
linux-oracle:focaleq5.4.0.1024.21
linux-oracle:focaleq5.4.0.1030.27
linux-oracle:focaleq5.4.0.1025.22

Name	Operator	Version
linux-aws:focal	eq	5.4.0.1024.25
linux-aws:focal	eq	5.4.0.1021.22
linux-aws:focal	eq	5.4.0.1029.30
linux-aws:focal	eq	5.4.0.1025.26
linux-aws:focal	eq	5.4.0.1030.31
linux-aws:focal	eq	5.4.0.1022.23
linux-aws:focal	eq	5.4.0.1009.11
linux-oracle:focal	eq	5.4.0.1024.21
linux-oracle:focal	eq	5.4.0.1030.27
linux-oracle:focal	eq	5.4.0.1025.22