CVE-2021-47432

MEDIUM

Linux Kernel < 6.1.64 - Integer Overflow in Radix Tree Peek Function

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: lib/generic-radix-tree.c: Don't overflow in peek() When we started spreading new inode numbers throughout most of the 64 bit inode space, that triggered some corner case bugs, in particular some integer overflows related to the radix tree code. Oops.

References (4)

Core 4

Core References

Patch

https://git.kernel.org/stable/c/784d01f9bbc282abb0c5ade5beb98a87f50343ac

Patch

https://git.kernel.org/stable/c/ec298b958cb0c40d70c68079da933c8f31c5134c

Patch

https://git.kernel.org/stable/c/aa7f1827953100cdde0795289a80c6c077bfe437

Patch

https://git.kernel.org/stable/c/9492261ff2460252cf2d8de89cdf854c7e2b28a0

Scores

CVSS v3 5.5

EPSS 0.0024

EPSS Percentile 15.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-190

Status published

Products (11)

Linux/Linux < 5.1

Linux/Linux 5.1

Linux/Linux 6.1.64 - 6.1.*

Linux/Linux 6.5.13 - 6.5.*

Linux/Linux 6.6.3 - 6.6.*

Linux/Linux 6.7

Linux/Linux ba20ba2e3743bac786dff777954c11930256075e - 784d01f9bbc282abb0c5ade5beb98a87f50343ac

Linux/Linux ba20ba2e3743bac786dff777954c11930256075e - 9492261ff2460252cf2d8de89cdf854c7e2b28a0

Linux/Linux ba20ba2e3743bac786dff777954c11930256075e - aa7f1827953100cdde0795289a80c6c077bfe437

Linux/Linux ba20ba2e3743bac786dff777954c11930256075e - ec298b958cb0c40d70c68079da933c8f31c5134c

... and 1 more

Published May 21, 2024

Tracked Since Feb 18, 2026