CVE-2021-38209

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2021-38209

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-38209.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2021-38209

Downstream

DEBIAN-CVE-2021-38209

OESA-2021-1318

SUSE-SU-2021:3179-1

SUSE-SU-2021:3205-1

SUSE-SU-2021:3205-2

UBUNTU-CVE-2021-38209

openSUSE-SU-2021:3179-1

openSUSE-SU-2021:3205-1

Related

Published

2021-08-08T20:15:07Z

Modified

2025-08-09T20:01:26Z

Severity

3.3 (Low) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N CVSS Calculator

Summary

[none]

Details

net/netfilter/nfconntrackstandalone.c in the Linux kernel before 5.12.2 allows observation of changes in any net namespace because these changes are leaked into all other net namespaces. This is related to the NFSYSCTLCTMAX, NFSYSCTLCTEXPECTMAX, and NFSYSCTLCTBUCKETS sysctls.

References

Affected packages