PT-2021-8160 · Linux+3 · Linux Kernel+3

Ondrej Mosnacek

Published

2021-11-19

Updated

2025-01-14

CVE-2021-47218

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to a NULL-pointer dereference in the hashtab compute size() function of the selinux component in the Linux kernel. When the hash table slot array allocation fails in hashtab init(), h->size is left initialized with a non-zero value, but the h->htable pointer is NULL. This may cause a NULL pointer dereference, as the policydb code relies on the assumption that even after a failed hashtab init(), hashtab map() and hashtab destroy() can be safely called on it. The problem occurs because these functions detect an empty hashtab only by looking at the size.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

BDU:2024-09178

CVE-2021-47218

OPENSUSE-SU-2024_1641-1

OPENSUSE-SU-2024_1644-1

OPENSUSE-SU-2024_1659-1

OPENSUSE-SU-2024_1663-1

SUSE-SU-2024:1641-1

SUSE-SU-2024:1644-1

SUSE-SU-2024:1647-1

SUSE-SU-2024:1659-1

SUSE-SU-2024:1663-1

Affected Products

Astra Linux

Linux Kernel

Red Os

Suse

PT-2021-8160 · Linux+3 · Linux Kernel+3

CVE-2021-47218

Weakness Enumeration

Related Identifiers

Affected Products

References · 572