Vulnerability CVE-2021-3178: Information

Description

fs/nfsd/nfs3xdr.c in the Linux kernel through 5.10.8, when there is an NFS export of a subdirectory of a filesystem, allows remote attackers to traverse to other parts of the filesystem via READDIRPLUS. NOTE: some parties argue that such a subdirectory export is not intended to prevent this attack; see also the exports(5) no_subtree_check default behavior

Severity: MEDIUM (6.5) Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

URL: https://nvd.nist.gov/vuln/detail/CVE-2021-3178

Published: Jan. 19, 2021

Modified: May 17, 2024

Error type identifier: CWE-22

Fixed packages

Package name	Branch	Fixed in version	Version from repository	Errata ID	Task #	State
kernel-image-mp	sisyphus	5.10.12-alt1	6.8.8-alt1	ALT-PU-2021-1188-1	265584	Fixed
kernel-image-mp	p10	5.10.12-alt1	6.1.19-alt1	ALT-PU-2021-1188-1	265584	Fixed
kernel-image-mp	p9	5.10.16-alt1	5.12.16-alt1	ALT-PU-2021-1446-1	267460	Fixed
kernel-image-rpi-def	sisyphus	5.10.36-alt1	5.15.92-alt2	ALT-PU-2021-1862-1	272154	Fixed
kernel-image-rpi-def	p10	5.10.36-alt1	5.15.92-alt2	ALT-PU-2021-1862-1	272154	Fixed
kernel-image-rpi-def	p9	5.10.36-alt1	5.10.81-alt1	ALT-PU-2021-1866-1	272593	Fixed
kernel-image-rpi-un	sisyphus	5.10.17-alt1	6.6.23-alt1	ALT-PU-2021-1417-1	266511	Fixed
kernel-image-rpi-un	p10	5.10.17-alt1	6.1.77-alt1	ALT-PU-2021-1417-1	266511	Fixed
kernel-image-rpi-un	p9	5.10.17-alt1	5.12.17-alt1	ALT-PU-2021-1424-1	267217	Fixed
kernel-image-rt	sisyphus	5.10.35-alt1.rt39	6.1.91-alt1.rt31	ALT-PU-2021-1870-1	272532	Fixed
kernel-image-rt	p10	5.10.35-alt1.rt39	5.10.216-alt1.rt108	ALT-PU-2021-1870-1	272532	Fixed
kernel-image-std-def	sisyphus	5.10.28-alt1	6.1.92-alt1	ALT-PU-2021-1621-1	268839	Fixed
kernel-image-std-def	p10	5.10.28-alt1	5.10.217-alt1	ALT-PU-2021-1621-1	268839	Fixed
kernel-image-std-def	c9f2	5.10.32-alt0.c9f	5.10.214-alt0.c9f.2	ALT-PU-2021-1739-1	270353	Fixed
kernel-image-std-kvm	sisyphus	5.10.29-alt1	5.10.176-alt1	ALT-PU-2021-1656-1	269859	Fixed
kernel-image-std-kvm	p10	5.10.29-alt1	5.10.42-alt1	ALT-PU-2021-1656-1	269859	Fixed
kernel-image-un-def	sisyphus	5.10.9-alt1	6.6.32-alt1	ALT-PU-2021-1089-1	264932	Fixed
kernel-image-un-def	p10	5.10.9-alt1	6.1.90-alt1	ALT-PU-2021-1089-1	264932	Fixed
kernel-image-un-def	p9	5.10.9-alt2	5.10.216-alt2	ALT-PU-2021-1127-1	264933	Fixed
kernel-image-un-def	c10f1	5.10.9-alt1	6.1.85-alt0.c10f.1	ALT-PU-2021-1089-1	264932	Fixed
kernel-image-un-def	c9f2	5.10.9-alt2	5.10.29-alt2	ALT-PU-2021-1127-1	264933	Fixed

References to Advisories, Solutions, and Tools

Hyperlink	Resource
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=51b2ee7d006a736a9126e8111d1f24e4fd0afaa6	Mailing List Patch Vendor Advisory
[debian-lts-announce] 20210309 [SECURITY] [DLA 2586-1] linux security update	Mailing List Third Party Advisory
https://patchwork.kernel.org/project/linux-nfs/patch/20210111210129.GA11652%40fieldses.org/
FEDORA-2021-3bcc7198c8

Affected configurations:
1. Configuration 1
  cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
  End including
  5.10.8
  
  Configuration 2
  cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*
  
  Configuration 3
  cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

Version: v24.5.1

Vulnerability CVE-2021-3178: Information

Description

Fixed packages

References to Advisories, Solutions, and Tools

Configuration 1

Configuration 2

Configuration 3