Lucene search
LinuxVULNRICHMENT:CVE-2021-47461HistoryMay 22, 2024 - 6:23 a.m.
CVE-2021-47461 userfaultfd: fix a race between writeprotect and exit_mmap()
2024-05-2206:23:22
Linux
github.com
7
linux kernel
vulnerability
userfaultfd
race
writeprotect
exit_mmap
kasan
mmget_not_zero
cve-2021-47461
AI Score
6.8
Confidence
Low
EPSS
0
Percentile
15.5%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
In the Linux kernel, the following vulnerability has been resolved:
userfaultfd: fix a race between writeprotect and exit_mmap()
A race is possible when a process exits, its VMAs are removed by
exit_mmap() and at the same time userfaultfd_writeprotect() is called.
The race was detected by KASAN on a development kernel, but it appears
to be possible on vanilla kernels as well.
Use mmget_not_zero() to prevent the race as done in other userfaultfd
operations.
CNA Affected
[
{
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"product": "Linux",
"versions": [
{
"status": "affected",
"version": "63b2d4174c4a",
"lessThan": "3cda4bfffd4f",
"versionType": "git"
},
{
"status": "affected",
"version": "63b2d4174c4a",
"lessThan": "149958ecd062",
"versionType": "git"
},
{
"status": "affected",
"version": "63b2d4174c4a",
"lessThan": "cb185d5f1ebf",
"versionType": "git"
}
],
"programFiles": [
"fs/userfaultfd.c"
],
"defaultStatus": "unaffected"
},
{
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"product": "Linux",
"versions": [
{
"status": "affected",
"version": "5.7"
},
{
"status": "unaffected",
"version": "0",
"lessThan": "5.7",
"versionType": "custom"
},
{
"status": "unaffected",
"version": "5.10.76",
"versionType": "custom",
"lessThanOrEqual": "5.10.*"
},
{
"status": "unaffected",
"version": "5.14.15",
"versionType": "custom",
"lessThanOrEqual": "5.14.*"
},
{
"status": "unaffected",
"version": "5.15",
"versionType": "original_commit_for_fix",
"lessThanOrEqual": "*"
}
],
"programFiles": [
"fs/userfaultfd.c"
],
"defaultStatus": "affected"
}
]Related
debiancve
debiancve
CVE-2021-47461
2024-05-22 07:15:11
cve
cve
CVE-2021-47461
2024-05-22 07:15:11
nvd
nvd
CVE-2021-47461
2024-05-22 07:15:11
osv
osv
CVE-2021-47461
2024-05-22 07:15:00
Important: kernel-rt security update
2024-08-21 14:52:36
Important: kernel security update
2024-08-21 14:52:19
ubuntucve
ubuntucve
CVE-2021-47461
2024-05-22 00:00:00
redhatcve
redhatcve
CVE-2021-47461
2024-05-23 11:06:24
cvelist
cvelist
CVE-2021-47461 userfaultfd: fix a race between writeprotect and exit_mmap()
2024-05-22 06:23:22
redhat
redhat
(RHSA-2024:6297) Moderate: kernel security update
2024-09-04 06:55:44
(RHSA-2024:5102) Important: kernel-rt security update
2024-08-08 04:34:36
nessus
nessus
RHEL 8 : kernel (RHSA-2024:6297)
2024-09-04 00:00:00
AlmaLinux 8 : kernel-rt (ALSA-2024:5102)
2024-08-09 00:00:00
AlmaLinux 8 : kernel (ALSA-2024:5101)
2024-08-09 00:00:00
rocky
rocky
kernel-rt security update
2024-08-21 14:52:36
kernel security update
2024-09-17 00:57:33
kernel security update
2024-08-21 14:52:19
oraclelinux
oraclelinux
kernel security update
2024-08-08 00:00:00
openvas
openvas
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2024:2189-1)
2024-06-29 00:00:00
AI Score
6.8
Confidence
Low
EPSS
0
Percentile
15.5%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2021-47461