CVE-2021-3428 log

Source
Severity Medium
Remote No
Type Denial of service
Description 
A security issue was found in the Linux kernel before version 5.9. A denial of service problem is identified if an extent tree is corrupted in a crafted ext4 filesystem in fs/ext4/extents.c in ext4_es_cache_extent. Fabricating an integer overflow, a local attacker with a special user privilege may cause a system crash problem which can lead to an availability threat.
Group Package Affected Fixed Severity Status Ticket
AVG-1696 linux-lts 5.10.23-1 Medium Not affected
AVG-1695 linux-zen 5.11.6.zen1-1 Medium Not affected
AVG-1694 linux-hardened 5.11.6.hardened1-1 Medium Not affected
AVG-1693 linux 5.11.6.arch1-1 Medium Not affected
References 
https://www.openwall.com/lists/oss-security/2021/03/17/1
https://www.openwall.com/lists/oss-security/2021/03/17/2
https://bugzilla.redhat.com/show_bug.cgi?id=1936786
https://bugzilla.suse.com/show_bug.cgi?id=1173485
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=d176b1f62f242ab259ff665a26fbac69db1aecba
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=bf9a379d0980e7413d94cb18dac73db2bfc5f470
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=ce9f24cccdc019229b70a5c15e2b09ad9c0ab5d1