CVE-2021-4002
First published: Mon Nov 22 2021(Updated: )
A memory leak flaw in the Linux kernel's hugetlbfs memory usage was found in the way the user maps some regions of memory twice using shmget() which are aligned to PUD alignment with the fault of some of the memory pages. A local user could use this flaw to get unauthorized access to some data.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/kernel-rt | <0:4.18.0-372.9.1.rt7.166.el8 | 0:4.18.0-372.9.1.rt7.166.el8 |
| redhat/kernel | <0:4.18.0-372.9.1.el8 | 0:4.18.0-372.9.1.el8 |
| redhat/kernel | <5.16 | 5.16 |
| debian/linux | 5.10.223-1 5.10.226-1 6.1.123-1 6.1.128-1 6.12.12-1 6.12.13-1 | |
| Linux Kernel | <5.16 | |
| Linux Kernel | =5.16 | |
| Linux Kernel | =5.16-rc1 | |
| Linux Kernel | =5.16-rc2 | |
| Debian | =9.0 | |
| Debian | =10.0 | |
| Fedora | =35 | |
| oracle communications Cloud native core binding support function | =22.1.3 | |
| oracle communications cloud native core network exposure function | =22.1.1 | |
| oracle communications Cloud native core policy | =22.2.0 |
Remedy
Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.cve.org/CVERecord?id=CVE-2021-4002 https://nvd.nist.gov/vuln/detail/CVE-2021-4002 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=13e4ad2ce8df6e058ef482a31fdd81c725b0f7ea https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=a4a118f2eead1d6c49e00765de89878288d4b890 https://www.openwall.com/lists/oss-security/2021/11/25/1
- https://bugzilla.redhat.com/show_bug.cgi?id=2025726
- https://access.redhat.com/errata/RHSA-2022:1975
- https://access.redhat.com/errata/RHSA-2022:1988
- https://access.redhat.com/security/cve/cve-2021-4002
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=13e4ad2ce8df6e058ef482a31fdd81c725b0f7ea
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=a4a118f2eead1d6c49e00765de89878288d4b890
- https://lists.debian.org/debian-lts-announce/2022/03/msg00011.html
- https://lists.debian.org/debian-lts-announce/2022/03/msg00012.html
- https://www.debian.org/security/2022/dsa-5096
- https://www.openwall.com/lists/oss-security/2021/11/25/1
- https://www.oracle.com/security-alerts/cpujul2022.html
- https://launchpad.net/bugs/cve/CVE-2021-4002
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2026926
- https://git.kernel.org/linus/a4a118f2eead1d6c49e00765de89878288d4b890
- https://security-tracker.debian.org/tracker/CVE-2021-4002
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4002
- https://nvd.nist.gov/vuln/detail/CVE-2021-4002
- https://ubuntu.com/security/CVE-2021-4002
Frequently Asked Questions
What is the severity of CVE-2021-4002?
The severity of CVE-2021-4002 is categorized as medium.
How do I fix CVE-2021-4002?
To fix CVE-2021-4002, update the Linux kernel to version 0:4.18.0-372.9.1.rt7.166.el8 or 0:4.18.0-372.9.1.el8 or any appropriate version that addresses the vulnerability.
Who is affected by CVE-2021-4002?
CVE-2021-4002 affects local users on systems running vulnerable versions of the Linux kernel where hugetlbfs is utilized.
What is the nature of CVE-2021-4002?
CVE-2021-4002 is a memory leak vulnerability in the Linux kernel's hugetlbfs memory usage.
Can CVE-2021-4002 lead to unauthorized access?
Yes, CVE-2021-4002 could allow a local user to gain unauthorized access to sensitive data.
- collector/redhat-cve
- agent/type
- agent/first-publish-date
- collector/launchpad-cve
- source/Launchpad
- agent/weakness
- agent/severity
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2021-4002
- agent/software-canonical-lookup
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/references
- collector/usn-cve
- source/Ubuntu
- agent/description
- agent/last-modified-date
- agent/trending
- agent/source
- agent/author
- collector/security-tracker-debian
- source/Debian
- agent/softwarecombine
- agent/tags
- agent/event
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup-request
- collector/nvd-index
- package-manager/redhat
- package-manager/debian
- vendor/linux
- canonical/linux kernel
- version/linux kernel/5.16
- version/linux kernel/5.16-rc1
- version/linux kernel/5.16-rc2
- vendor/debian
- canonical/debian
- version/debian/9.0
- version/debian/10.0
- vendor/fedoraproject
- canonical/fedora
- version/fedora/35
- vendor/oracle
- canonical/oracle communications cloud native core binding support function
- version/oracle communications cloud native core binding support function/22.1.3
- canonical/oracle communications cloud native core network exposure function
- version/oracle communications cloud native core network exposure function/22.1.1
- canonical/oracle communications cloud native core policy
- version/oracle communications cloud native core policy/22.2.0