LinuxVULNRICHMENT:CVE-2021-47168

HistoryMar 25, 2024 - 9:16 a.m.

CVE-2021-47168 NFS: fix an incorrect limit in filelayout_decode_layout()

2024-03-2509:16:20

Linux

github.com

linux kernel

nfs

filelayout_decode_layout

memory corruption

AI Score

6.7

Confidence

Low

SSVC

Exploitation

none

Automatable

Technical Impact

partial

JSON

In the Linux kernel, the following vulnerability has been resolved:

NFS: fix an incorrect limit in filelayout_decode_layout()

The “sizeof(struct nfs_fh)” is two bytes too large and could lead to
memory corruption. It should be NFS_MAXFHSIZE because that’s the size
of the ->data[] buffer.

I reversed the size of the arguments to put the variable on the left.

References

git.kernel.org/stable/c/769b01ea68b6c49dc3cde6adf7e53927dacbd3a8

git.kernel.org/stable/c/945ebef997227ca8c20bad7f8a8358c8ee57a84a

git.kernel.org/stable/c/9b367fe770b1b80d7bf64ed0d177544a44405f6e

git.kernel.org/stable/c/9d280ab53df1d4a1043bd7a9e7c6a2f9cfbfe040

git.kernel.org/stable/c/b287521e9e94bb342ebe5fd8c3fd7db9aef4e6f1

git.kernel.org/stable/c/d34fb628f6ef522f996205a9e578216bbee09e84

git.kernel.org/stable/c/e411df81cd862ef3d5b878120b2a2fef0ca9cdb1

git.kernel.org/stable/c/f299522eda1566cbfbae4b15c82970fc41b03714