PT-2021-1523 · Linux+11 · Linux Kernel+11

Published

2021-11-22

·

Updated

2023-10-06

·

CVE-2021-4083

CVSS v3.1

7.0

High

VectorAV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.16-rc4
Description A read-after-free memory flaw was found in the Linux kernel's garbage collection for Unix domain socket file handlers. This issue occurs when users call close() and fget() simultaneously, potentially triggering a race condition. The flaw allows a local user to crash the system or escalate their privileges on the system.
Recommendations For Linux kernel versions prior to 5.16-rc4, update to version 5.16-rc4 or later to resolve the issue. As a temporary workaround, consider restricting access to the vulnerable fget() function until a patch is available. Additionally, be cautious when using the close() function in conjunction with fget() to minimize the risk of exploitation.

Fix

DoS

Race Condition

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-362CWE-416

Related Identifiers

ALSA-2022:1988
ALT-PU-2021-3330
ALT-PU-2021-3358
ALT-PU-2021-3563
ALT-PU-2021-3573
ALT-PU-2021-3660
ALT-PU-2022-1240
ALT-PU-2022-1291
ALT-PU-2022-1419
ALT-PU-2022-1421
ALT-PU-2023-1814
ALT-PU-2023-4894
ASB-A-216408350
BDU:2022-00095
CESA-2022_1975
CESA-2022_1988
CVE-2021-4083
DLA-2940-1
DLA-2941-1
DSA-5096-1
MGASA-2021-0574
MGASA-2021-0575
OESA-2021-1469
OPENSUSE-SU-2022:0169-1
OPENSUSE-SU-2022:0198-1
OPENSUSE-SU-2022:0366-1
OPENSUSE-SU-2022_0169-1
OPENSUSE-SU-2022_0198-1
OPENSUSE-SU-2022_0366-1
RHSA-2022:0820
RHSA-2022:0821
RHSA-2022:0823
RHSA-2022:0851
RHSA-2022:0925
RHSA-2022:0958
RHSA-2022:1103
RHSA-2022:1104
RHSA-2022:1107
RHSA-2022:1185
RHSA-2022:1198
RHSA-2022:1199
RHSA-2022:1263
RHSA-2022:1324
RHSA-2022:1373
RHSA-2022:1413
RHSA-2022:1418
RHSA-2022:1455
RHSA-2022:1975
RHSA-2022:1988
RHSA-2022:2189
RHSA-2022:4896
RHSA-2022_1198
RHSA-2022_1199
RHSA-2022_1975
RHSA-2022_1988
RLSA-2022:1975
RLSA-2022:1988
SUSE-SU-2022:0080-1
SUSE-SU-2022:0169-1
SUSE-SU-2022:0197-1
SUSE-SU-2022:0198-1
SUSE-SU-2022:0288-1
SUSE-SU-2022:0289-1
SUSE-SU-2022:0362-1
SUSE-SU-2022:0364-1
SUSE-SU-2022:0366-1
SUSE-SU-2022:0367-1
SUSE-SU-2022:0371-1
SUSE-SU-2022:0372-1
SUSE-SU-2022:0418-1
SUSE-SU-2022:0436-1
SUSE-SU-2022:0463-1
SUSE-SU-2022:0477-1
SUSE-SU-2022:0552-1
SUSE-SU-2022:0555-1
SUSE-SU-2022_0418-1
SUSE-SU-2022_0436-1
SUSE-SU-2022_0463-1
SUSE-SU-2022_0552-1
USN-5278-1
USN-5294-1
USN-5294-2
USN-5295-1
USN-5295-2
USN-5297-1
USN-5298-1
USN-5361-1
USN-5362-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu
Zvirt Node