CVE-2021-3178 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Low
Remote	Yes
Type	Directory traversal
Description	fs/nfsd/nfs3xdr.c in the Linux kernel before version 5.10.10 and 5.4.92, when there is an NFS export of a subdirectory of a filesystem, allows remote attackers to traverse to other parts of the filesystem via READDIRPLUS. NOTE: some parties argue that such a subdirectory export is not intended to prevent this attack; see also the exports(5) no_subtree_check default behavior.

Group	Package	Affected	Fixed	Severity	Status
AVG-1469	linux-lts	5.4.91-1	5.4.92-1	Low	Fixed
AVG-1468	linux-zen	5.10.9.zen1-1	5.10.10.zen1-1	Low	Fixed
AVG-1467	linux-hardened	5.10.9.a-1	5.10.10.hardened1-1	Low	Fixed
AVG-1466	linux	5.10.9.arch1-1	5.10.10.arch1-1	Low	Fixed

References
https://patchwork.kernel.org/project/linux-nfs/patch/20210111210129.GA11652@fieldses.org/ https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.10.10&id=fdcaa4af5e70e2d984c9620a09e9dade067f2620 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.4.92&id=4aef760c28e8bd1860a27fd78067b4ea77124987

References

https://patchwork.kernel.org/project/linux-nfs/patch/20210111210129.GA11652@fieldses.org/
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.10.10&id=fdcaa4af5e70e2d984c9620a09e9dade067f2620
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.4.92&id=4aef760c28e8bd1860a27fd78067b4ea77124987

Notes
Workaround ========== This issue can be mitigated by enabling the subtree_check option of the NFS server.