Bug 2024633 (CVE-2021-3998)

Summary: CVE-2021-3998 glibc: Unexpected return value from realpath() could leak data based on the application
Product: [Other] Security Response Reporter: Pedro Sampaio <psampaio>
Component: vulnerabilityAssignee: Nobody <nobody>
Status: CLOSED NOTABUG QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: unspecifiedCC: aoliva, arjun, ashankar, bdettelb, caswilli, codonell, dhalasz, dj, fjansen, fweimer, ganandan, glibc-bugzilla, jburrell, jwong, kaycoth, kyoshida, law, mcascell, mcermak, mfabian, micjohns, pfrankli, psegedy, rth, sipoyare, sthirugn, vkrizan, vkumar, vmugicag
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
A flaw was found in glibc. The realpath() function can mistakenly return an unexpected value, potentially leading to information leakage and disclosure of sensitive data.
 Story Points: ---
Clone Of: Environment:
Last Closed: 2024-01-05 15:48:18 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 2032276, 2039674    
Bug Blocks: 2024641    

Description Pedro Sampaio 2021-11-18 14:35:19 UTC 
A flaw was found in glibc. The realpath function may sometimes return a unexpected value, potentially leading to disclosure of sensitive data.
Comment 14 Mauro Matteo Cascella 2021-11-30 10:34:03 UTC 
RHEL 6, 7 and 8 are not affected by this bug as they ship an older version of glibc which does not include the vulnerable code (i.e. realpath_stk() function does not exist).
Comment 18 Mauro Matteo Cascella 2022-01-12 08:36:05 UTC 
Created glibc tracking bugs for this issue:

Affects: fedora-all [bug 2039674]
Comment 19 Siddhesh Poyarekar 2022-01-12 17:45:48 UTC 
Filed upstream:

https://sourceware.org/bugzilla/show_bug.cgi?id=28770
Comment 20 Siddhesh Poyarekar 2022-01-13 06:09:29 UTC 
I've posted a fix for review: https://patchwork.sourceware.org/project/glibc/patch/20220113055920.3155918-1-siddhesh@sourceware.org/
Comment 21 Mauro Matteo Cascella 2022-01-24 14:35:58 UTC 
Upstream commit:
https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=ee8d5e33adb284601c00c94687bc907e10aec9bb