CVE-2021-33631

low-risk

Published 2024-01-18

Integer Overflow or Wraparound vulnerability in openEuler kernel on Linux (filesystem modules) allows Forced Integer Overflow.This issue affects openEuler kernel: from 4.19.90 before 4.19.90-2401.3, from 5.10.0-60.18.0 before 5.10.0-183.0.0.

Do I need to act?

0.19% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 5.5/10 Medium

LOCAL / LOW complexity

Affected Products (2)

Openeuler

Affected Vendors

Openatom

References (38)

http://www.openwall.com/lists/oss-security/2024/01/30/10

http://www.openwall.com/lists/oss-security/2024/01/30/3

http://www.openwall.com/lists/oss-security/2024/01/30/4

http://www.openwall.com/lists/oss-security/2024/01/30/5

http://www.openwall.com/lists/oss-security/2024/01/30/9

http://www.openwall.com/lists/oss-security/2024/01/31/2

http://www.openwall.com/lists/oss-security/2024/01/31/3

http://www.openwall.com/lists/oss-security/2024/02/02/6

http://www.openwall.com/lists/oss-security/2024/02/02/9

http://www.openwall.com/lists/oss-security/2024/02/03/1

Patch https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=5c...

Release Notes https://gitee.com/src-openeuler/kernel/pulls/1389

Release Notes https://gitee.com/src-openeuler/kernel/pulls/1396

Vendor Advisory https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA...

http://www.openwall.com/lists/oss-security/2024/01/30/10

and 18 more references

/ 100

low-risk

Severity 18/34 · Moderate

Exploitability 1/34 · Minimal

Exposure 7/34 · Low