Integer Overflow Vulnerability in util-linux through 2.37.1

Integer Overflow Vulnerability in util-linux through 2.37.1

CVE-2021-37600 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

An integer overflow in util-linux through 2.37.1 can potentially cause a buffer overflow if an attacker were able to use system resources in a way that leads to a large number in the /proc/sysvipc/sem file. NOTE: this is unexploitable in GNU C Library environments, and possibly in all realistic environments.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.