Integer Overflow or Wraparound vulnerability in openEuler kernel on Linux (filesystem modules) allows Forced Integer Overflow.This issue affects openEuler kernel: from 4.19.90 before 4.19.90-2401.3, from 5.10.0-60.18.0 before 5.10.0-183.0.0.

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors Products
Huawei
  • Openeuler

Configuration 1 [-]

OR cpe:2.3:o:huawei:openeuler:*:*:*:*:-:-:*:*
cpe:2.3:o:huawei:openeuler:*:*:*:*:-:linux:*:*
cpe:2.3:o:huawei:openeuler:*:*:*:*:-:-:*:*
References
Link Resource
http://www.openwall.com/lists/oss-security/2024/01/30/10
http://www.openwall.com/lists/oss-security/2024/01/30/3
http://www.openwall.com/lists/oss-security/2024/01/30/4
http://www.openwall.com/lists/oss-security/2024/01/30/5
http://www.openwall.com/lists/oss-security/2024/01/30/9
http://www.openwall.com/lists/oss-security/2024/01/31/2
http://www.openwall.com/lists/oss-security/2024/01/31/3
http://www.openwall.com/lists/oss-security/2024/02/02/6
http://www.openwall.com/lists/oss-security/2024/02/02/9
http://www.openwall.com/lists/oss-security/2024/02/03/1
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=5c099c4fdc438014d5893629e70a8ba934433ee8 Patch
https://gitee.com/src-openeuler/kernel/pulls/1389 Release Notes
https://gitee.com/src-openeuler/kernel/pulls/1396 Release Notes
https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1030 Vendor Advisory
https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1031 Vendor Advisory
https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1032 Vendor Advisory
https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1033 Vendor Advisory
https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1034 Vendor Advisory
https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1035 Vendor Advisory
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: openEuler

Published: 2024-01-18T15:05:58.610Z

Updated: 2024-01-26T08:11:01.065Z

Reserved: 2021-05-28T14:26:05.941Z

Link: CVE-2021-33631

JSON object: View

cve-icon NVD Information

Status : Modified

Published: 2024-01-18T15:15:08.860

Modified: 2024-02-03T03:15:08.760

Link: CVE-2021-33631

JSON object: View

cve-icon Redhat Information

No data.

CWE