PT-2024-11454 · Linux+2 · Linux Kernel+2

Gang He

Published

2021-10-18

Updated

2025-09-24

CVE-2021-47460

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been resolved, which was related to data corruption after conversion from inline format in the ocfs2 file system. The issue occurred because the code attempted to zero out pages beyond the file size, but these pages were ignored by the writeback code, resulting in data loss when the file was grown. The problem was fixed by not doing the pointless zeroing during conversion from inline format, similar to the standard write path.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

BDU:2025-14232

CVE-2021-47460

OESA-2024-1705

OPENSUSE-SU-2024_2185-1

OPENSUSE-SU-2024_2189-1

SUSE-SU-2024:1979-1

SUSE-SU-2024:1983-1

SUSE-SU-2024:2008-1

SUSE-SU-2024:2010-1

SUSE-SU-2024:2011-1

SUSE-SU-2024:2019-1

SUSE-SU-2024:2183-1

SUSE-SU-2024:2184-1

SUSE-SU-2024:2185-1

SUSE-SU-2024:2189-1

SUSE-SU-2024:2190-1

Affected Products

Astra Linux

Linux Kernel

Suse

PT-2024-11454 · Linux+2 · Linux Kernel+2

CVE-2021-47460

Weakness Enumeration

Related Identifiers

Affected Products

References · 1566