Race Condition in get_old_root Leads to Denial of Service in Linux Kernel (CVE-2021-28964)

Race Condition in get_old_root Leads to Denial of Service in Linux Kernel (CVE-2021-28964)

CVE-2021-28964 · MEDIUM Severity

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

A race condition was discovered in get_old_root in fs/btrfs/ctree.c in the Linux kernel through 5.11.8. It allows attackers to cause a denial of service (BUG) because of a lack of locking on an extent buffer before a cloning operation, aka CID-dbcc7d57bffc.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.