Home > Vulnerability Database > CVE-2021-46923

Mend.io Vulnerability Database

CVE-2021-46923

Good to know:

Date: February 27, 2024

In the Linux kernel, the following vulnerability has been resolved: fs/mount_setattr: always cleanup mount_kattr Make sure that finish_mount_kattr() is called after mount_kattr was succesfully built in both the success and failure case to prevent leaking any references we took when we built it. We returned early if path lookup failed thereby risking to leak an additional reference we took when building mount_kattr when an idmapped mount was requested.

Language: C

Severity Score

5.5

Related Resources (4)

Url: https://nvd.nist.gov/vuln/detail/CVE-2021-46923

Url: https://git.kernel.org/stable/c/47b5d0a7532d39e42a938f81e3904268145c341d

Url: https://git.kernel.org/stable/c/012e332286e2bb9f6ac77d195f17e74b2963d663

Url: https://www.mend.io/vulnerability-database/CVE-2021-46923

Severity Score

5.5

Weakness Type (CWE)

Exposure of Resource to Wrong Sphere

CWE-668

Top Fix

Upgrade Version

Upgrade to version v5.15.13

Learn More

CVSS v3.1

Base Score:	5.5
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	LOW
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	NONE
Availability (A):	NONE

Mend.io Vulnerability Database

We found results for “”

CVE-2021-46923

Good to know:

Date: February 27, 2024

Language: C

Severity Score

Related Resources (4)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

Do you need more information?