Updated: 2026-02-25
CWE: CWE-416
Description:
A flaw was found in the Linux kernel’s futex implementation. This flaw allows a local attacker to corrupt system memory or escalate their privileges when creating a futex on a filesystem that is about to be unmounted. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability. A flaw was found in the Linux kernel’s futex implementation. This flaw allows a local attacker to corrupt system memory or escalate their privileges when creating a futex on a filesystem that is about to be unmounted. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
CVSS3: 7.8
| OS | Vendor version | Errata |
|---|---|---|
| Ubuntu 16.04 | 4.4.0-179.209 | USN-4364-1 |
| Ubuntu 16.04 AWS | 4.4.0-1107.118 | USN-4364-1 |
| RHEL 8 | 4.18.0-240.el8 | RHSA-2020:4431 |
| Oracle Linux 8 | 4.18.0-240.el8 | ELSA-2020-4431 |
| Oracle Linux 7 UEK 6 | 5.4.17-2036.102.0.2.el7uek | ELSA-2021-9006 |
| Oracle Linux 8 UEK 6 | 5.4.17-2036.102.0.2.el8uek | ELSA-2021-9006 |
| AlmaLinux 8 | 4.18.0-240.el8 | ALSA-2020:4431 |
| Ubuntu 16.04 AWS ESM | 4.4.0-1107.118 | USN-4364-1 |
| OS | Original kernel version | State |
|---|---|---|
| Ubuntu 16.04 | |
Ready For Release |
| Ubuntu 16.04 AWS | |
Ready For Release |
| Proxmox VE 5 | |
Ready For Release |
| RHEL 8 | |
Ready For Release |
| Debian 10 | |
Will Not Fix |
| Endurance 7 eig 4.14 | |
Ready For Release |
| Proofpoint | |
Ready For Release |
| Oracle Linux 8 | |
Ready For Release |
| CloudLinux OS 8 | |
Will Not Fix |
| CloudLinux OS 7h | |
Will Not Fix |
| Oracle Linux 7 UEK 6 | |
Ready For Release |
| Oracle Linux 8 UEK 6 | |
Ready For Release |
| AlmaLinux 8 | |
Ready For Release |
| Ubuntu 16.04 AWS ESM | |
Will Not Fix |