DEBIAN-CVE-2021-46923
Advisory lineage Upstream: 1 Downstream: 0
Upstream
Published: 27 Feb 2024, 10:15
Last modified:28 Apr 2026, 20:23
Vulnerability Summary
Overall Risk (default)
low
22/100 CVSS Score
5.5 MEDIUM
3.1 (osv_debian)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
27 Feb 2024, 10:15
Published
Vulnerability first disclosed
28 Apr 2026, 20:23
Last Modified
Vulnerability information updated
Description
In the Linux kernel, the following vulnerability has been resolved: fs/mount_setattr: always cleanup mount_kattr Make sure that finish_mount_kattr() is called after mount_kattr was succesfully built in both the success and failure case to prevent leaking any references we took when we built it. We returned early if path lookup failed thereby risking to leak an additional reference we took when building mount_kattr when an idmapped mount was requested.
CVSS Metrics
- v3.1•MEDIUM•Score: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Affected Systems
- debian•linux
< 5.15.15-1 | < 5.15.15-1 | < 5.15.15-1