CVE-2021-4154

Updated: 2024-11-24 05:53:54.413193

Description:

A use-after-free flaw was found in cgroup1_parse_param in kernel/cgroup/cgroup-v1.c in the Linux kernel's cgroup v1 parser. A local attacker with a user privilege could cause a privilege escalation by exploiting the fsconfig syscall parameter leading to a container breakout and a denial of service on the system.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x HIGH 7.2
CVSS Version 3.x HIGH 8.8

Status

OS name Project name Version Score Severity Status Errata Last updated

Statement

AlmaLinux 9.2 ESU kernel 5.14.0 8.8 HIGH Already Fixed 2023-12-09 08:44:52
AlmaLinux 9.2 FIPS kernel 5.14.0 8.8 HIGH Already Fixed 2024-01-20 04:10:33
CentOS 6 ELS kernel 2.6.32 8.8 HIGH Not Vulnerable 2022-03-30 15:43:53
CentOS 8.4 ELS kernel 4.18.0 8.8 HIGH Released CLSA-2022:1644933991 2022-03-01 11:49:11
CentOS 8.5 ELS kernel 4.18.0 8.8 HIGH Released CLSA-2022:1651146021 2022-04-28 15:59:09
CloudLinux 6 ELS kernel 2.6.32 8.8 HIGH Not Vulnerable 2022-03-30 15:43:53
Oracle Linux 6 ELS kernel 2.6.32 8.8 HIGH Not Vulnerable 2022-03-30 15:43:53
Ubuntu 16.04 ELS linux 4.4.0 8.8 HIGH Not Vulnerable 2022-04-15 07:04:51
Ubuntu 16.04 ELS linux-hwe 4.15.0 8.8 HIGH Not Vulnerable 2022-10-05 03:15:05