NVD脆弱性詳細

CVE-2021-33631

概要	Integer Overflow or Wraparound vulnerability in openEuler kernel on Linux (filesystem modules) allows Forced Integer Overflow.This issue affects openEuler kernel: from 4.19.90 before 4.19.90-2401.3, from 5.10.0-60.18.0 before 5.10.0-183.0.0.
公表日	2024年1月19日0:15
登録日	2024年1月19日10:00
最終更新日	2024年11月21日15:09

CVSS3.1 : HIGH
スコア	7.8
ベクター	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
攻撃元区分(AV)	ローカル
攻撃条件の複雑さ(AC)	低
攻撃に必要な特権レベル(PR)	低
利用者の関与(UI)	不要
影響の想定範囲(S)	変更なし
機密性への影響(C)	高
完全性への影響(I)	高
可用性への影響(A)	高

影響を受けるソフトウェアの構成

構成1	以上	以下	より上	未満
cpe:2.3:o:huawei:openeuler:::::-:-::	5.10.0-60.18.0			5.10.0-183.0.0
cpe:2.3:o:huawei:openeuler:::::-:-::	4.19.90			4.19.90-2401.3
cpe:2.3:o:huawei:openeuler:::::-:linux::	4.19.90			4.19.90-2401.3

関連情報、対策とツール

No	URL	タグ
1	http://www.openwall.com/lists/oss-security/2024/01/30/10
2	http://www.openwall.com/lists/oss-security/2024/01/30/10
3	http://www.openwall.com/lists/oss-security/2024/01/30/3
4	http://www.openwall.com/lists/oss-security/2024/01/30/3
5	http://www.openwall.com/lists/oss-security/2024/01/30/4
6	http://www.openwall.com/lists/oss-security/2024/01/30/4
7	http://www.openwall.com/lists/oss-security/2024/01/30/5
8	http://www.openwall.com/lists/oss-security/2024/01/30/5
9	http://www.openwall.com/lists/oss-security/2024/01/30/9
10	http://www.openwall.com/lists/oss-security/2024/01/30/9
11	http://www.openwall.com/lists/oss-security/2024/01/31/2
12	http://www.openwall.com/lists/oss-security/2024/01/31/2
13	http://www.openwall.com/lists/oss-security/2024/01/31/3
14	http://www.openwall.com/lists/oss-security/2024/01/31/3
15	http://www.openwall.com/lists/oss-security/2024/02/02/6
16	http://www.openwall.com/lists/oss-security/2024/02/02/6
17	http://www.openwall.com/lists/oss-security/2024/02/02/9
18	http://www.openwall.com/lists/oss-security/2024/02/02/9
19	http://www.openwall.com/lists/oss-security/2024/02/03/1
20	http://www.openwall.com/lists/oss-security/2024/02/03/1
21	https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=5c099c4fdc438014d5893629e70a8ba934433ee8	Patch
22	https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=5c099c4fdc438014d5893629e70a8ba934433ee8	Patch
23	https://gitee.com/src-openeuler/kernel/pulls/1389	Release Notes
24	https://gitee.com/src-openeuler/kernel/pulls/1389	Release Notes
25	https://gitee.com/src-openeuler/kernel/pulls/1396	Release Notes
26	https://gitee.com/src-openeuler/kernel/pulls/1396	Release Notes
27	https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1030	Vendor Advisory
28	https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1030	Vendor Advisory
29	https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1031	Vendor Advisory
30	https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1031	Vendor Advisory
31	https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1032	Vendor Advisory
32	https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1032	Vendor Advisory
33	https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1033	Vendor Advisory
34	https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1033	Vendor Advisory
35	https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1034	Vendor Advisory
36	https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1034	Vendor Advisory
37	https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1035	Vendor Advisory
38	https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1035	Vendor Advisory

共通脆弱性一覧

No	CWE	名前	URL
1	CWE-190	整数オーバーフローまたはラップアラウンド	https://cwe.mitre.org/data/definitions/190.html