CVE-2021-46945
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
27/02/2024
Last modified:
10/04/2024
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
ext4: always panic when errors=panic is specified<br />
<br />
Before commit 014c9caa29d3 ("ext4: make ext4_abort() use<br />
__ext4_error()"), the following series of commands would trigger a<br />
panic:<br />
<br />
1. mount /dev/sda -o ro,errors=panic test<br />
2. mount /dev/sda -o remount,abort test<br />
<br />
After commit 014c9caa29d3, remounting a file system using the test<br />
mount option "abort" will no longer trigger a panic. This commit will<br />
restore the behaviour immediately before commit 014c9caa29d3.<br />
(However, note that the Linux kernel&#39;s behavior has not been<br />
consistent; some previous kernel versions, including 5.4 and 4.19<br />
similarly did not panic after using the mount option "abort".)<br />
<br />
This also makes a change to long-standing behaviour; namely, the<br />
following series commands will now cause a panic, when previously it<br />
did not:<br />
<br />
1. mount /dev/sda -o ro,errors=panic test<br />
2. echo test > /sys/fs/ext4/sda/trigger_fs_error<br />
<br />
However, this makes ext4&#39;s behaviour much more consistent, so this is<br />
a good thing.
Impact
Base Score 3.x
5.50
Severity 3.x
MEDIUM
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.11.0 (including) | 5.11.20 (excluding) |
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.12.0 (including) | 5.12.3 (excluding) |
To consult the complete list of CPE names with products and versions, see this page