Detections
Analytics

CVE-2021-47316

medium

Description

In the Linux kernel, the following vulnerability has been resolved: nfsd: fix NULL dereference in nfs3svc_encode_getaclres In error cases the dentry may be NULL. Before 20798dfe249a, the encoder also checked dentry and d_really_is_positive(dentry), but that looks like overkill to me--zero status should be enough to guarantee a positive dentry. This isn't the first time we've seen an error-case NULL dereference hidden in the initialization of a local variable in an xdr encoder. But I went back through the other recent rewrites and didn't spot any similar bugs.

References

https://git.kernel.org/stable/c/e79057d15d96ef19de4de6d7e479bae3d58a2a8d

https://git.kernel.org/stable/c/ab1016d39cc052064e32f25ad18ef8767a0ee3b8

https://git.kernel.org/stable/c/650e6f383a6eb40f7c0a010982a74ab4b6893870

Details

Source: Mitre, NVD

Published: 2024-05-21

Updated: 2024-12-24

Risk Information

CVSS v2

Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium