{"id":"CVE-2021-37576","details":"arch/powerpc/kvm/book3s_rtas.c in the Linux kernel through 5.13.5 on the powerpc platform allows KVM guest OS users to cause host OS memory corruption via rtas_args.nargs, aka CID-f62f3c20647e.","modified":"2026-03-15T22:41:18.931311Z","published":"2021-07-26T22:15:08.423Z","related":["ALSA-2021:3447","SUSE-SU-2021:2643-1","SUSE-SU-2021:2644-1","SUSE-SU-2021:2645-1","SUSE-SU-2021:2646-1","SUSE-SU-2021:2647-1","SUSE-SU-2021:2678-1","SUSE-SU-2021:2687-1","SUSE-SU-2021:2695-1","SUSE-SU-2021:2746-1","SUSE-SU-2021:2756-1","SUSE-SU-2021:2842-1","SUSE-SU-2021:2846-1","SUSE-SU-2021:3876-1","SUSE-SU-2021:3929-1","SUSE-SU-2021:3935-1","SUSE-SU-2021:3969-1","SUSE-SU-2021:3972-1","openSUSE-SU-2021:1142-1","openSUSE-SU-2021:2645-1","openSUSE-SU-2021:2687-1","openSUSE-SU-2021:3876-1","openSUSE-SU-2024:10728-1","openSUSE-SU-2024:13704-1"],"references":[{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z2YZ2DNURMYYVDT2NYAFDESJC35KCUDS/"},{"type":"WEB","url":"https://lore.kernel.org/linuxppc-dev/87im0x1lqi.fsf%40mpe.ellerman.id.au/T/#u"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WDFA7DSQIPM7XPNXJBXFWXHJFVUBCAG6/"},{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20210917-0005/"},{"type":"ADVISORY","url":"https://www.debian.org/security/2021/dsa-4978"},{"type":"FIX","url":"http://www.openwall.com/lists/oss-security/2021/07/27/2"},{"type":"FIX","url":"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=f62f3c20647ebd5fb6ecb8f0b477b9281c44c10a"}],"affected":[{"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"3.10"},{"fixed":"4.4.277"}]},{"events":[{"introduced":"4.5"},{"fixed":"4.9.277"}]},{"events":[{"introduced":"4.10"},{"fixed":"4.14.241"}]},{"events":[{"introduced":"4.15"},{"fixed":"4.19.199"}]},{"events":[{"introduced":"4.20"},{"fixed":"5.4.136"}]},{"events":[{"introduced":"5.5"},{"fixed":"5.10.54"}]},{"events":[{"introduced":"5.11"},{"fixed":"5.13.6"}]},{"events":[{"introduced":"0"},{"last_affected":"33"}]},{"events":[{"introduced":"0"},{"last_affected":"34"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-37576.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}