CVE-2021-4001

Updated: 2023-11-04 21:06:44.361079

Description:

A race condition was found in the Linux kernel's ebpf verifier between bpf_map_update_elem and bpf_map_freeze due to a missing lock in kernel/bpf/syscall.c. In this flaw, a local user with a special privilege (cap_sys_admin or cap_bpf) can modify the frozen mapped address space. This flaw affects kernel versions prior to 5.16 rc2.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x MEDIUM 4.7
CVSS Version 3.x MEDIUM 4.1

Status

OS name Project name Version Score Severity Status Errata Last updated
AlmaLinux 9.2 ESU kernel 5.14.0 4.1 MEDIUM Ignored 2023-11-08 04:07:41
AlmaLinux 9.2 FIPS kernel 5.14.0 4.1 MEDIUM Ignored 2023-11-21 04:12:18
CentOS 6 ELS kernel 2.6.32 4.1 MEDIUM Ignored 2022-02-10 08:36:45
CentOS 8.4 ELS kernel 4.18.0 4.1 MEDIUM Ignored 2022-02-10 08:36:28
CentOS 8.5 ELS kernel 4.18.0 4.1 MEDIUM Ignored 2022-02-21 05:39:35
CloudLinux 6 ELS kernel 2.6.32 4.1 MEDIUM Ignored 2022-02-10 08:36:45
Oracle Linux 6 ELS kernel 2.6.32 4.1 MEDIUM Ignored 2022-02-10 08:36:45
Ubuntu 16.04 ELS linux 4.4.0 4.1 MEDIUM Ignored 2022-02-10 08:36:45
Ubuntu 16.04 ELS linux-hwe 4.15.0 4.1 MEDIUM Ignored 2022-09-28 05:02:34
Ubuntu 18.04 ELS linux 4.15.0 4.1 MEDIUM Not Vulnerable 2023-10-05 03:51:26