{"id":"CVE-2021-45486","details":"In the IPv4 implementation in the Linux kernel before 5.12.4, net/ipv4/route.c has an information leak because the hash table is very small.","modified":"2026-03-14T11:17:57.363204Z","published":"2021-12-25T02:15:06.710Z","related":["ALSA-2022:1988","SUSE-SU-2022:0056-1","SUSE-SU-2022:0068-1","SUSE-SU-2022:0079-1","SUSE-SU-2022:0080-1","SUSE-SU-2022:0090-1","SUSE-SU-2022:0131-1","SUSE-SU-2022:0169-1","SUSE-SU-2022:0197-1","SUSE-SU-2022:0198-1","SUSE-SU-2022:0289-1","SUSE-SU-2022:0362-1","SUSE-SU-2022:0366-1","SUSE-SU-2022:0367-1","SUSE-SU-2022:0371-1","SUSE-SU-2022:0477-1","openSUSE-SU-2022:0056-1","openSUSE-SU-2022:0131-1","openSUSE-SU-2022:0169-1","openSUSE-SU-2022:0198-1","openSUSE-SU-2022:0366-1"],"references":[{"type":"ADVISORY","url":"https://arxiv.org/pdf/2112.09604.pdf"},{"type":"ADVISORY","url":"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.12.4"},{"type":"FIX","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/net/ipv4/route.c?id=aa6dd211e4b1dde9d5dc25d699d35f789ae7eeba"},{"type":"FIX","url":"https://www.oracle.com/security-alerts/cpujul2022.html"}],"affected":[{"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"5.12.4"}]},{"events":[{"introduced":"0"},{"last_affected":"22.1.3"}]},{"events":[{"introduced":"0"},{"last_affected":"22.1.1"}]},{"events":[{"introduced":"0"},{"last_affected":"22.2.0"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-45486.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"}]}