PT-2021-4227 · Linux+8 · Linux Kernel+8

Vince Weaver

·

Published

2021-03-16

·

Updated

2024-06-15

·

CVE-2021-28971

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions through 5.11.8
Description The issue is related to the intel pmu drain pebs nhm function in the Linux kernel, which can cause a system crash due to mishandling of the PEBS status in a PEBS record. This can be exploited by userspace applications, such as perf-fuzzer, on some Haswell CPUs.
Recommendations For Linux kernel versions through 5.11.8, update to a version newer than 5.11.8 to resolve the issue. At the moment, there is no information about other specific fixes for this vulnerability.

Fix

Resource Exhaustion

Improper Handling of Exceptional Conditions

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-400CWE-755

Related Identifiers

ALSA-2021:4356
ALT-PU-2021-1566
ALT-PU-2021-1609
ALT-PU-2021-1869
ALT-PU-2021-1888
ALT-PU-2021-1896
ALT-PU-2022-1240
ALT-PU-2022-1419
ALT-PU-2022-1421
ALT-PU-2023-1814
AZL-6542
BDU:2021-04831
CESA-2021_4140
CESA-2021_4356
CVE-2021-28971
DLA-2689-1
DLA-2690-1
MGASA-2021-0174
MGASA-2021-0175
OESA-2021-1176
OPENSUSE-SU-2021:0532-1
OPENSUSE-SU-2021:0758-1
OPENSUSE-SU-2021:1975-1
OPENSUSE-SU-2021:1977-1
OPENSUSE-SU-2021_0532-1
OPENSUSE-SU-2021_0758-1
OPENSUSE-SU-2021_1975-1
OPENSUSE-SU-2021_1977-1
OPENSUSE-SU-2024:10728-1
OPENSUSE-SU-2024:13704-1
RHSA-2021:4140
RHSA-2021:4356
RHSA-2021_4140
RHSA-2021_4356
SUSE-SU-2021:1175-1
SUSE-SU-2021:1176-1
SUSE-SU-2021:1177-1
SUSE-SU-2021:1210-1
SUSE-SU-2021:1211-1
SUSE-SU-2021:1238-1
SUSE-SU-2021:1573-1
SUSE-SU-2021:1596-1
SUSE-SU-2021:1624-1
SUSE-SU-2021:1625-1
SUSE-SU-2021:1975-1
SUSE-SU-2021:1977-1
USN-4948-1
USN-4979-1
USN-4982-1
USN-4984-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Suse
Ubuntu