Extended Lifecycle Support CVE dashboard by TuxСare

CVEs Releases Projects

CVE-2021-4197

Updated: 2022-06-02 23:17:28.092286

Description:

An unprivileged write to the file handler flaw in the Linux kernel's control groups and namespaces subsystem was found in the way users have access to some less privileged process that are controlled by cgroups and have higher privileged parent process. It is actually both for cgroup2 and cgroup1 versions of control groups. A local user could use this flaw to crash the system or escalate their privileges on the system.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x HIGH 7.2
CVSS Version 3.x HIGH 7.8

Status

OS name Project name Version Status Errata Last updated
CentOS 8.4 ELS kernel 4.18.0-305.25.1 In research 2022-06-01 11:45:26.982059
CentOS 8.5 ELS kernel 4.18.0-348.7.1 In research 2022-06-01 11:45:26.714664