CVE-2021-20261
MEDIUMLinux Kernel - Race Condition in Floppy Disk Drive Controller Driver
Title source: llmDescription
A race condition was found in the Linux kernels implementation of the floppy disk drive controller driver software. The impact of this issue is lessened by the fact that the default permissions on the floppy device (/dev/fd0) are restricted to root. If the permissions on the device have changed the impact changes greatly. In the default configuration root (or equivalent) permissions are required to attack this flaw.
References (2)
Core 2
Core References
Issue Tracking, Patch, Third Party Advisory x_refsource_misc
https://bugzilla.redhat.com/show_bug.cgi?id=1932150
Mailing List, Patch, Vendor Advisory x_refsource_misc
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=a0c80efe5956ccce9fe7ae5c78542578c07bc20a
Scores
CVSS v3
6.4
EPSS
0.0003
EPSS Percentile
10.0%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-362
Status
published
Products (3)
linux/linux_kernel
4.5 (5 CPE variants)
linux/linux_kernel
< 4.5
redhat/enterprise_linux
7.0
Published
Mar 11, 2021
Tracked Since
Feb 18, 2026