An out-of-bounds (OOB) memory write flaw was found in the NFSD in the Linux kernel. Missing sanity may lead to a write beyond bmval[bmlen-1] in nfsd4_decode_bitmap4 in fs/nfsd/nfs4xdr.c. In this flaw, a local attacker with user privilege may gain access to out-of-bounds memory, leading to a system integrity and confidentiality threat.
References
Link | Resource |
---|---|
https://bugzilla.redhat.com/show_bug.cgi?id=2025101 | Issue Tracking Patch Third Party Advisory |
https://lore.kernel.org/linux-nfs/163692036074.16710.5678362976688977923.stgit%40klimt.1015granger.net/ | |
https://security.netapp.com/advisory/ntap-20220318-0010/ | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2022-02-18T00:00:00
Updated: 2022-10-07T00:00:00
Reserved: 2021-12-10T00:00:00
Link: CVE-2021-4090
JSON object: View
NVD Information
Status : Modified
Published: 2022-02-18T18:15:10.207
Modified: 2023-11-07T03:40:10.273
Link: CVE-2021-4090
JSON object: View
Redhat Information
No data.
CWE