CVE-2021-33631

2024-01-1800:00:00

ubuntu.com

openeuler

kernel

integer overflow

linux

filesystem modules

forced integer overflow

cve-2021-33631

4.19.90-2401.3

5.10.0-183.0.0

physical access

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.5 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.2%

JSON

Integer Overflow or Wraparound vulnerability in openEuler kernel on Linux
(filesystem modules) allows Forced Integer Overflow.This issue affects
openEuler kernel: from 4.19.90 before 4.19.90-2401.3, from 5.10.0-60.18.0
before 5.10.0-183.0.0.

Notes

Author	Note
	Priority reason: Requires physical access

OSVersionArchitecturePackageVersionFilename
ubuntu20.04noarchlinux< 5.4.0-156.173UNKNOWN
ubuntu22.04noarchlinux< 5.15.0-69.76UNKNOWN
ubuntu20.04noarchlinux-aws< 5.4.0-1107.115UNKNOWN
ubuntu22.04noarchlinux-aws< 5.15.0-1033.37UNKNOWN
ubuntu20.04noarchlinux-aws-5.15< 5.15.0-1033.37~20.04.1UNKNOWN
ubuntu18.04noarchlinux-aws-5.4< anyUNKNOWN
ubuntu20.04noarchlinux-azure< 5.4.0-1113.119UNKNOWN
ubuntu22.04noarchlinux-azure< 5.15.0-1035.42UNKNOWN
ubuntu20.04noarchlinux-azure-5.15< 5.15.0-1035.42~20.04.1UNKNOWN
ubuntu18.04noarchlinux-azure-5.4< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	20.04	noarch	linux	< 5.4.0-156.173	UNKNOWN
ubuntu	22.04	noarch	linux	< 5.15.0-69.76	UNKNOWN
ubuntu	20.04	noarch	linux-aws	< 5.4.0-1107.115	UNKNOWN
ubuntu	22.04	noarch	linux-aws	< 5.15.0-1033.37	UNKNOWN
ubuntu	20.04	noarch	linux-aws-5.15	< 5.15.0-1033.37~20.04.1	UNKNOWN
ubuntu	18.04	noarch	linux-aws-5.4	< any	UNKNOWN
ubuntu	20.04	noarch	linux-azure	< 5.4.0-1113.119	UNKNOWN
ubuntu	22.04	noarch	linux-azure	< 5.15.0-1035.42	UNKNOWN
ubuntu	20.04	noarch	linux-azure-5.15	< 5.15.0-1035.42~20.04.1	UNKNOWN
ubuntu	18.04	noarch	linux-azure-5.4	< any	UNKNOWN