PT-2024-11169 · Linux+2 · Linux Kernel+2

Ye Bin

Published

2021-06-06

Updated

2025-02-27

CVE-2021-47117

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A bug has been fixed in the Linux kernel's ext4 file system, specifically in the ext4 es cache extent function, which is called by ext4 split extent at. The issue occurs when running fsstress with injected IO faults, resulting in a kernel bug and internal error. The call trace includes functions such as ext4 es cache extent, ext4 cache extents, ext4 find extent, and ext4 ext map blocks. The patch modification is based on a suggestion by Jan Kara to properly fix the extent tree in case of ENOSPC and EDQUOT errors, which can be easily triggered by users.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

BDU:2025-13694

CVE-2021-47117

OPENSUSE-SU-2024_1489-1

SUSE-SU-2024:1454-1

SUSE-SU-2024:1465-1

SUSE-SU-2024:1489-1

SUSE-SU-2024:1643-1

SUSE-SU-2024:1646-1

SUSE-SU-2024:1870-1

Affected Products

Astra Linux

Linux Kernel

Suse

PT-2024-11169 · Linux+2 · Linux Kernel+2

CVE-2021-47117

Weakness Enumeration

Related Identifiers

Affected Products

References · 622