Wind River Support Network

HomeDefectsLIN10-8406
Fixed

LIN10-8406 : Security Advisory - linux - CVE-2021-28964

Created: Mar 22, 2021    Updated: Apr 1, 2021
Resolved Date: Apr 1, 2021
Found In Version: 10.17.41.1
Severity: Standard
Applicable for: Wind River Linux LTS 17
Component/s: Kernel

Description

A race condition was discovered in get_old_root in fs/btrfs/ctree.c in the Linux kernel through 5.11.8. It allows attackers to cause a denial of service (BUG) because of a lack of locking on an extent buffer before a cloning operation.

Reference and upstream patch:
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=dbcc7d57bffc0c8cac9dac11bec548597d59a6a5

CREATE(Triage):(User=admin) [CVE-2021-28964|https://nvd.nist.gov/vuln/detail/CVE-2021-28964]

CVEs


Live chat
Online