CVE-2021-37600
Summary
| CVE | CVE-2021-37600 |
|---|
| State | PUBLIC |
|---|
| Assigner | [email protected] |
|---|
| Source Priority | CVE Program / NVD first with legacy fallback |
|---|
| Published | 2021-07-30 14:15:00 UTC |
|---|
| Updated | 2024-01-07 09:15:00 UTC |
|---|
| Description | ** DISPUTED ** An integer overflow in util-linux through 2.37.1 can potentially cause a buffer overflow if an attacker were able to use system resources in a way that leads to a large number in the /proc/sysvipc/sem file. NOTE: this is unexploitable in GNU C Library environments, and possibly in all realistic environments. |
|---|
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|
| sys-utils/ipcutils: be careful when call calloc() for uint64 nmembs · karelzak/util-linux@1c9143d · GitHub |
MISC |
github.com |
|
| Potential integer overflow in ipcutils.c · Issue #1395 · karelzak/util-linux · GitHub |
MISC |
github.com |
|
| GLSA-202401-08 |
|
security.gentoo.org |
|
| CVE-2021-37600 Util-linux Vulnerability in NetApp Products | NetApp Product Security |
CONFIRM |
security.netapp.com |
|
| CVE Program record |
CVE.ORG |
www.cve.org |
canonical |
| NVD vulnerability detail |
NVD |
nvd.nist.gov |
canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 179807 Debian Security Update for util-linux (CVE-2021-37600)
- 354722 Amazon Linux Security Advisory for util-linux : ALAS2-2023-1920
- 501787 Alpine Linux Security Update for util-linux
- 504486 Alpine Linux Security Update for util-linux
- 591406 Siemens SIMATIC S7-1500 CPU GNU/Linux subsystem Multiple Vulnerabilities (SSB-439005, ICSA-22-104-13)
- 6000560 Debian Security Update for util-linux (DLA 3782-1)
- 670828 EulerOS Security Update for util-linux (EulerOS-SA-2021-2703)
- 670834 EulerOS Security Update for util-linux (EulerOS-SA-2021-2728)
- 670899 EulerOS Security Update for util-linux (EulerOS-SA-2021-2728)
- 670968 EulerOS Security Update for util-linux (EulerOS-SA-2021-2622)
- 671001 EulerOS Security Update for util-linux (EulerOS-SA-2021-2649)
- 671002 EulerOS Security Update for util-linux (EulerOS-SA-2021-2678)
- 710828 Gentoo Linux util-linux Multiple Vulnerabilities (GLSA 202401-08)
- 751251 SUSE Enterprise Linux Security Update for util-linux (SUSE-SU-2021:3475-1)
- 751254 SUSE Enterprise Linux Security Update for util-linux (SUSE-SU-2021:3463-1)
- 751257 OpenSUSE Security Update for util-linux (openSUSE-SU-2021:3474-1)
- 751315 OpenSUSE Security Update for util-linux (openSUSE-SU-2021:1440-1)
- 751962 SUSE Enterprise Linux Security Update for util-linux (SUSE-SU-2022:1108-1)
- 751966 SUSE Enterprise Linux Security Update for util-linux (SUSE-SU-2022:1105-1)
- 900288 CBL-Mariner Linux Security Update for util-linux 2.32.1
- 903674 Common Base Linux Mariner (CBL-Mariner) Security Update for util-linux (4993)
