CVE-2021-46982

CVSS 3.1 Score 4.7 of 10 (medium)

Details

Published Feb 28, 2024

Updated: Dec 31, 2024

CWE ID 362

Summary

CVE-2021-46982 is a vulnerability affecting the Linux kernel's F2FS file system. The issue lies in a race condition between truncate() and overwrite operations, which can result in a NULL pointer being returned by find_lock_page(). This can occur when one reference count is left in a page, but the page may not be attached to the mapping tree after truncation. The vulnerability was discovered during the pos_fsstress testcase and can lead to a kernel panic. To mitigate this issue, the updated page should no longer be referenced during the truncation process.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Linux Kernel

Affected Vendors

LINUX

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/urUB7Q
https://www.cve.org/CVERecord?id=CVE-2021-46982
https://nvd.nist.gov/vuln/detail/CVE-2021-46982

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners