CVE-2021-3669

First published: Tue Jul 27 2021(Updated: )

A flaw was found in the Linux kernel. Measuring usage of the shared memory does not scale with large shared memory segment counts which could lead to resource exhaustion and DoS.

Credit: secalert@redhat.com secalert@redhat.com

Affected Software	Affected Version	How to fix
redhat/kernel-rt	<0:4.18.0-372.9.1.rt7.166.el8	0:4.18.0-372.9.1.rt7.166.el8
redhat/kernel	<0:4.18.0-372.9.1.el8	0:4.18.0-372.9.1.el8
Linux Linux kernel
IBM Spectrum Copy Data Management	>=2.2.0.0<=2.2.15.0
IBM Spectrum Protect Plus	>=10.1.0<=10.1.10.2
Linux Linux kernel
Debian Debian Linux	=10.0
Debian Debian Linux	=11.0
Fedoraproject Fedora	=34
Redhat Build Of Quarkus	>=2.0<2.7
Redhat Developer Tools	=1.0
Redhat Enterprise Linux	=6.0
Redhat Enterprise Linux	=7.0
Redhat Enterprise Linux	=8.0
Redhat Enterprise Linux Aus	=8.6
Redhat Enterprise Linux For Ibm Z Systems	=8.0
Redhat Enterprise Linux For Ibm Z Systems Eus	=8.6
Redhat Enterprise Linux For Power Little Endian	=8.0
Redhat Enterprise Linux For Power Little Endian Eus	=8.6
Redhat Enterprise Linux For Real Time	=8
Redhat Enterprise Linux For Real Time For Nfv	=8
Redhat Enterprise Linux For Real Time For Nfv Tus	=8.6
Redhat Enterprise Linux For Real Time Tus	=8.6
Redhat Enterprise Linux Server Aus	=8.6
Redhat Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions	=8.6
Redhat Enterprise Linux Server Tus	=8.6
Redhat Codeready Linux Builder
Redhat Enterprise Linux	=8.0
Redhat Enterprise Linux Eus	=8.6
Redhat Enterprise Linux For Power Little Endian	=8.0
Redhat Enterprise Linux For Power Little Endian Eus	=8.6
Redhat Openshift Container Platform	=4.6
Redhat Openshift Container Platform	=4.7
Redhat Openshift Container Platform	=4.9
Redhat Virtualization Host	=4.0
All of
Any of
IBM Spectrum Copy Data Management	>=2.2.0.0<=2.2.15.0
IBM Spectrum Protect Plus	>=10.1.0<=10.1.10.2
Linux Linux kernel
All of
Redhat Codeready Linux Builder
Any of
Redhat Enterprise Linux	=8.0
Redhat Enterprise Linux Eus	=8.6
Redhat Enterprise Linux For Power Little Endian	=8.0
Redhat Enterprise Linux For Power Little Endian Eus	=8.6
All of
Any of
Redhat Openshift Container Platform	=4.6
Redhat Openshift Container Platform	=4.7
Redhat Openshift Container Platform	=4.9
Redhat Virtualization Host	=4.0
Redhat Enterprise Linux	=8.0
debian/linux	<=5.10.223-1	5.10.226-1 6.1.115-1 6.1.112-1 6.11.7-1 6.11.9-1

Remedy

Mitigation for this issue is either not available or the currently available options does not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

collector/redhat-cve
collector/nvd-index
agent/type
agent/first-publish-date
collector/launchpad-cve
source/Launchpad
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2021-3669
agent/weakness
agent/author
agent/remedy
agent/severity
collector/nvd-cve
source/NVD
agent/software-canonical-lookup
agent/description
agent/references
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/event
agent/tags
collector/security-tracker-debian
source/Debian
agent/softwarecombine
collector/usn-cve
source/Ubuntu
package-manager/redhat
vendor/linux
canonical/linux linux kernel
vendor/ibm
canonical/ibm spectrum copy data management
version/ibm spectrum copy data management/2.2.0.0
version/ibm spectrum copy data management/2.2.15.0
canonical/ibm spectrum protect plus
version/ibm spectrum protect plus/10.1.0
version/ibm spectrum protect plus/10.1.10.2
vendor/debian
canonical/debian debian linux
version/debian debian linux/10.0
version/debian debian linux/11.0
vendor/fedoraproject
canonical/fedoraproject fedora
version/fedoraproject fedora/34
vendor/redhat
canonical/redhat build of quarkus
version/redhat build of quarkus/2.0
canonical/redhat developer tools
version/redhat developer tools/1.0
canonical/redhat enterprise linux
version/redhat enterprise linux/6.0
version/redhat enterprise linux/7.0
version/redhat enterprise linux/8.0
canonical/redhat enterprise linux aus
version/redhat enterprise linux aus/8.6
canonical/redhat enterprise linux for ibm z systems
version/redhat enterprise linux for ibm z systems/8.0
canonical/redhat enterprise linux for ibm z systems eus
version/redhat enterprise linux for ibm z systems eus/8.6
canonical/redhat enterprise linux for power little endian
version/redhat enterprise linux for power little endian/8.0
canonical/redhat enterprise linux for power little endian eus
version/redhat enterprise linux for power little endian eus/8.6
canonical/redhat enterprise linux for real time
version/redhat enterprise linux for real time/8
canonical/redhat enterprise linux for real time for nfv
version/redhat enterprise linux for real time for nfv/8
canonical/redhat enterprise linux for real time for nfv tus
version/redhat enterprise linux for real time for nfv tus/8.6
canonical/redhat enterprise linux for real time tus
version/redhat enterprise linux for real time tus/8.6
canonical/redhat enterprise linux server aus
version/redhat enterprise linux server aus/8.6
canonical/redhat enterprise linux server for power little endian update services for sap solutions
version/redhat enterprise linux server for power little endian update services for sap solutions/8.6
canonical/redhat enterprise linux server tus
version/redhat enterprise linux server tus/8.6
canonical/redhat codeready linux builder
canonical/redhat enterprise linux eus
version/redhat enterprise linux eus/8.6
canonical/redhat openshift container platform
version/redhat openshift container platform/4.6
version/redhat openshift container platform/4.7
version/redhat openshift container platform/4.9
canonical/redhat virtualization host
version/redhat virtualization host/4.0
package-manager/debian

CVE-2021-3669

Remedy

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

Company

Resources

Contact