CVE-2021-46923

Advisory lineage Upstream: 0 Downstream: 8

Downstream

DEBIAN-CVE-2021-46923 SUSE-SU-2024:0855-1 SUSE-SU-2024:0858-1 SUSE-SU-2024:0900-1 SUSE-SU-2024:0900-2 SUSE-SU-2024:0910-1

Modified

Published: 27 Feb 2024, 09:43

Last modified:11 May 2026, 13:44

Vulnerability Summary

Overall Risk (default)

low

22/100

CVSS Score

5.5 MEDIUM

v3.1 (nvd)

EPSS Score

0.01% LOW

0% probability 0.00%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

27 Feb 2024, 09:43

Published

Vulnerability first disclosed

11 May 2026, 13:44

Last Modified

Vulnerability information updated

Description

In the Linux kernel, the following vulnerability has been resolved: fs/mount_setattr: always cleanup mount_kattr Make sure that finish_mount_kattr() is called after mount_kattr was succesfully built in both the success and failure case to prevent leaking any references we took when we built it. We returned early if path lookup failed thereby risking to leak an additional reference we took when building mount_kattr when an idmapped mount was requested.

CVSS Metrics

v3.1•MEDIUM•Score: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

EPSS Trends

Current EPSS score: 0.01%• Percentile: 2%

Techniques & Countermeasures

CWE-668•Exposure of Resource to Wrong Sphere
The product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource.

Affected Systems

linux•linux
≥ 9caccd41541a6f7d6279928d9f971f6642c361af, < 47b5d0a7532d39e42a938f81e3904268145c341d | ≥ 9caccd41541a6f7d6279928d9f971f6642c361af, < 012e332286e2bb9f6ac77d195f17e74b2963d663 | 5.12
linux•linux_kernel
≥ 5.12.0, < 5.15.13