PT-2021-6085 · Linux+9 · Linux Kernel+9

Published

2021-10-04

·

Updated

2023-08-14

·

CVE-2021-4028

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A flaw in the Linux kernel's implementation of RDMA communications manager listener code allowed an attacker with local access to setup a socket to listen on a high port, enabling a list element to be used after it was freed. This could allow an attacker to crash the system or possibly escalate privileges on the system.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALSA-2022:1550
ALT-PU-2021-2989
ALT-PU-2021-2996
ALT-PU-2021-2998
ALT-PU-2021-3015
ALT-PU-2021-3021
ALT-PU-2021-3022
ALT-PU-2021-3035
ALT-PU-2021-3055
ALT-PU-2021-3067
ALT-PU-2021-3451
ALT-PU-2021-3458
ALT-PU-2021-3468
ALT-PU-2021-3477
ALT-PU-2021-3563
ALT-PU-2021-3573
ALT-PU-2022-1365
ALT-PU-2023-4894
BDU:2022-00733
CESA-2022_1535
CESA-2022_1550
CESA-2022_1555
CVE-2021-4028
RHSA-2022:0590
RHSA-2022:0629
RHSA-2022:0636
RHSA-2022:0771
RHSA-2022:0772
RHSA-2022:0777
RHSA-2022:0823
RHSA-2022:0851
RHSA-2022:0958
RHSA-2022:1185
RHSA-2022:1198
RHSA-2022:1199
RHSA-2022:1263
RHSA-2022:1324
RHSA-2022:1373
RHSA-2022:1535
RHSA-2022:1550
RHSA-2022:1555
RHSA-2022:2186
RHSA-2022:2188
RHSA-2022:2189
RHSA-2022:2211
RHSA-2022:4896
RHSA-2022_1198
RHSA-2022_1199
RHSA-2022_1550
RHSA-2022_1555
RLSA-2022:1550
RLSA-2022:1555
SUSE-SU-2022:0257-1
SUSE-SU-2022:0270-1
SUSE-SU-2022:0293-1
SUSE-SU-2022:0295-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Zvirt Node