VDB
DEBIAN-CVE-2021-37600
DEBIAN-CVE-2021-37600
PUBLISHED
CVSS 5.5 MEDIUM
An integer overflow in util-linux through 2.37.1 can potentially cause a buffer overflow if an attacker were able to use system resources in a way that leads to a large number in the /proc/sysvipc/sem file. NOTE: this is unexploitable in GNU C Library environments, and possibly in all realistic environments.
Risk Scores
CVSS 3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:13 | util-linux | 0, 0, 0 |
| Debian:11 | util-linux | 0, 0, 0 |
| Debian:14 | util-linux | 0, 0, 0 |
| Debian:12 | util-linux | 0, 0, 0 |
Exploit Intelligence
- TestCommand.yaml (github-poc)
Timeline
- Jul 30, 2021 CVE Published
- Apr 28, 2026 CVE Updated