CVE-2021-3999

HIGH

GNU Glibc < 2.31 - Buffer Overflow

Title source: rule

Description

A flaw was found in glibc. An off-by-one buffer overflow and underflow in getcwd() may lead to memory corruption when the size of the buffer is exactly 1. A local attacker who can control the input buffer and size passed to getcwd() in a setuid program could use this flaw to potentially execute arbitrary code and escalate their privileges on the system.

References (8)

[Patch] https://sourceware.org/git/gitweb.cgi?p=glibc.git%3Bh=23e0e8f5f1fb5ed150253d986ecccdc90c2dcd5e

[Mailing List, Third Party Advisory] https://lists.debian.org/debian-lts-announce/2022/10/msg00021.html

[Third Party Advisory] https://access.redhat.com/security/cve/CVE-2021-3999

[Issue Tracking, Third Party Advisory] https://bugzilla.redhat.com/show_bug.cgi?id=2024637

[Third Party Advisory] https://security-tracker.debian.org/tracker/CVE-2021-3999

[Third Party Advisory] https://security.netapp.com/advisory/ntap-20221104-0001/

[Issue Tracking, Third Party Advisory] https://sourceware.org/bugzilla/show_bug.cgi?id=28769

[Exploit, Mailing List, Third Party Advisory] https://www.openwall.com/lists/oss-security/2022/01/24/4

Scores

CVSS v3 7.8

EPSS 0.0085

EPSS Percentile 74.9%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-193

Status published

Products (11)

debian/debian_linux 10.0

debian/debian_linux 11.0

gnu/glibc < 2.31

netapp/e-series_performance_analyzer

netapp/h300s_firmware

netapp/h410c_firmware

netapp/h410s_firmware

netapp/h500s_firmware

netapp/h700s_firmware

netapp/nfs_plug-in

... and 1 more

Published Aug 24, 2022

Tracked Since Feb 18, 2026