Vulnerability identifier: #VU91205

Vulnerability risk: Low

CVSSv3.1: 7.7 [AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-47168

CWE-ID: CWE-119

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Linux kernel
Operating systems & Components / Operating system

Vendor: Linux Foundation

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the filelayout_decode_layout() function in fs/nfs/filelayout/filelayout.c. A local user can escalate privileges on the system.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Linux kernel:

---

External links
http://git.kernel.org/stable/c/9d280ab53df1d4a1043bd7a9e7c6a2f9cfbfe040
http://git.kernel.org/stable/c/b287521e9e94bb342ebe5fd8c3fd7db9aef4e6f1
http://git.kernel.org/stable/c/f299522eda1566cbfbae4b15c82970fc41b03714
http://git.kernel.org/stable/c/945ebef997227ca8c20bad7f8a8358c8ee57a84a
http://git.kernel.org/stable/c/e411df81cd862ef3d5b878120b2a2fef0ca9cdb1
http://git.kernel.org/stable/c/9b367fe770b1b80d7bf64ed0d177544a44405f6e
http://git.kernel.org/stable/c/d34fb628f6ef522f996205a9e578216bbee09e84
http://git.kernel.org/stable/c/769b01ea68b6c49dc3cde6adf7e53927dacbd3a8

---

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.