CVE-2021-3739

Updated: 2024-11-24 04:25:11.021696

Description:

A NULL pointer dereference flaw was found in the btrfs_rm_device function in fs/btrfs/volumes.c in the Linux Kernel, where triggering the bug requires ‘CAP_SYS_ADMIN’. This flaw allows a local attacker to crash the system or leak kernel internal information. The highest threat from this vulnerability is to system availability.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x LOW 3.6
CVSS Version 3.x HIGH 7.1

Status

OS name Project name Version Score Severity Status Errata Last updated

Statement

AlmaLinux 9.2 ESU kernel 5.14.0 7.1 HIGH Not Vulnerable 2024-01-19 13:11:00
AlmaLinux 9.2 FIPS kernel 5.14.0 7.1 HIGH Not Vulnerable 2024-01-19 13:10:05
CentOS 6 ELS kernel 2.6.32 7.1 HIGH Not Vulnerable 2022-04-07 21:53:02
CentOS 7 ELS kernel 3.10.0 7.1 HIGH Not Vulnerable 2023-11-02 14:11:58
CentOS 8.4 ELS kernel 4.18.0 7.1 HIGH Not Vulnerable 2022-06-01 08:36:14
CentOS 8.5 ELS kernel 4.18.0 7.1 HIGH Not Vulnerable 2023-04-14 08:54:27
CloudLinux 6 ELS kernel 2.6.32 7.1 HIGH Not Vulnerable 2022-04-07 21:53:02
Oracle Linux 6 ELS kernel 2.6.32 7.1 HIGH Not Vulnerable 2022-04-07 21:53:02
Ubuntu 16.04 ELS linux-hwe 4.15.0 7.1 HIGH Not Vulnerable 2022-10-04 14:02:36
Ubuntu 16.04 ELS linux 4.4.0 7.1 HIGH Not Vulnerable 2022-04-11 16:02:48
Total: 11