5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
kernel is vulnerable to information disclosure. The vulnerability exists due to the XFS filesystem allowing for size increase of files with unaligned size allowing an attacker to leak data on the XFS filesystem.
access.redhat.com/errata/RHSA-2022:0176
access.redhat.com/security/cve/CVE-2021-4155
access.redhat.com/security/updates/classification/#important
bugzilla.redhat.com/show_bug.cgi?id=2034813
git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=983d8e60f50806f90534cc5373d0ce867e5aaf79
security-tracker.debian.org/tracker/CVE-2021-4155
www.openwall.com/lists/oss-security/2022/01/10/1