Unrated severityNVD Advisory· Published Mar 10, 2021· Updated Aug 3, 2024

CVE-2021-20265

Description

A flaw was found in the way memory resources were freed in the unix_stream_recvmsg function in the Linux kernel when a signal was pending. This flaw allows an unprivileged local user to crash the system by exhausting available memory. The highest threat from this vulnerability is to system availability.

Affected products

Linux/Linux kerneldescription
osv-coords95 versions
pkg:apk/chainguard/hyperv-daemons pkg:apk/chainguard/hyperv-daemons-6.18 pkg:apk/chainguard/hyperv-daemons-generic pkg:apk/chainguard/linux pkg:apk/chainguard/linux-aws-6.12 pkg:apk/chainguard/linux-aws-6.12-boot-installed pkg:apk/chainguard/linux-aws-6.12-fips-boot-installed pkg:apk/chainguard/linux-aws-6.12-headers pkg:apk/chainguard/linux-aws-6.12-modules pkg:apk/chainguard/linux-aws-6.18 pkg:apk/chainguard/linux-aws-6.18-boot-installed pkg:apk/chainguard/linux-aws-6.18-fips-boot-installed pkg:apk/chainguard/linux-aws-6.18-headers pkg:apk/chainguard/linux-aws-6.18-modules pkg:apk/chainguard/linux-aws-generic pkg:apk/chainguard/linux-aws-generic-boot-configuration pkg:apk/chainguard/linux-aws-generic-boot-installed pkg:apk/chainguard/linux-aws-generic-fips-boot-installed pkg:apk/chainguard/linux-aws-generic-headers pkg:apk/chainguard/linux-aws-generic-modules pkg:apk/chainguard/linux-azure-6.12 pkg:apk/chainguard/linux-azure-6.18 pkg:apk/chainguard/linux-azure-6.18-boot-installed pkg:apk/chainguard/linux-azure-6.18-fips-boot-installed pkg:apk/chainguard/linux-azure-6.18-headers pkg:apk/chainguard/linux-azure-6.18-modules pkg:apk/chainguard/linux-azure-generic pkg:apk/chainguard/linux-azure-generic-boot-configuration pkg:apk/chainguard/linux-azure-generic-boot-installed pkg:apk/chainguard/linux-azure-generic-fips-boot-installed pkg:apk/chainguard/linux-azure-generic-headers pkg:apk/chainguard/linux-azure-generic-modules pkg:apk/chainguard/linux-boot-configuration pkg:apk/chainguard/linux-boot-installed pkg:apk/chainguard/linux-gcp-6.12 pkg:apk/chainguard/linux-gcp-6.18 pkg:apk/chainguard/linux-gcp-6.18-boot-installed pkg:apk/chainguard/linux-gcp-6.18-fips-boot-installed pkg:apk/chainguard/linux-gcp-6.18-headers pkg:apk/chainguard/linux-gcp-6.18-modules pkg:apk/chainguard/linux-gcp-generic pkg:apk/chainguard/linux-gcp-generic-boot-installed pkg:apk/chainguard/linux-gcp-generic-fips-boot-installed pkg:apk/chainguard/linux-gcp-generic-headers pkg:apk/chainguard/linux-gcp-generic-modules pkg:apk/chainguard/linux-modules pkg:apk/chainguard/linux-qemu-6.12 pkg:apk/chainguard/linux-qemu-6.18 pkg:apk/chainguard/linux-qemu-generic pkg:apk/chainguard/linux-qemu-generic-bootc-boot-installed pkg:apk/chainguard/linux-qemu-melange pkg:apk/chainguard/linux-qemu-rc pkg:apk/chainguard/linux-qemu-rc-boot-installed pkg:apk/chainguard/linux-qemu-rc-fips-boot-installed pkg:apk/chainguard/linux-qemu-rc-headers pkg:apk/chainguard/linux-qemu-rc-modules pkg:apk/chainguard/linux-vmware-6.12 pkg:apk/chainguard/linux-vmware-6.18 pkg:apk/chainguard/linux-vmware-generic pkg:rpm/suse/kernel-bigmem&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS pkg:rpm/suse/kernel-default&distro=HPE%20Helion%20OpenStack%208 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2012%20SP3 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCL pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-BCL pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-LTSS pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3 pkg:rpm/suse/kernel-default&distro=SUSE%20OpenStack%20Cloud%208 pkg:rpm/suse/kernel-default&distro=SUSE%20OpenStack%20Cloud%20Crowbar%208 pkg:rpm/suse/kernel-ec2&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS pkg:rpm/suse/kernel-pae&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS pkg:rpm/suse/kernel-ppc64&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS pkg:rpm/suse/kernel-source&distro=HPE%20Helion%20OpenStack%208 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCL pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-BCL pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-LTSS pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3 pkg:rpm/suse/kernel-source&distro=SUSE%20OpenStack%20Cloud%208 pkg:rpm/suse/kernel-source&distro=SUSE%20OpenStack%20Cloud%20Crowbar%208 pkg:rpm/suse/kernel-syms&distro=HPE%20Helion%20OpenStack%208 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCL pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-BCL pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-LTSS pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3 pkg:rpm/suse/kernel-syms&distro=SUSE%20OpenStack%20Cloud%208 pkg:rpm/suse/kernel-syms&distro=SUSE%20OpenStack%20Cloud%20Crowbar%208 pkg:rpm/suse/kernel-trace&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS pkg:rpm/suse/kgraft-patch-SLE12-SP3_Update_41&distro=HPE%20Helion%20OpenStack%208 pkg:rpm/suse/kgraft-patch-SLE12-SP3_Update_41&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-LTSS pkg:rpm/suse/kgraft-patch-SLE12-SP3_Update_41&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3 pkg:rpm/suse/kgraft-patch-SLE12-SP3_Update_41&distro=SUSE%20OpenStack%20Cloud%208 pkg:rpm/suse/kgraft-patch-SLE12-SP3_Update_41&distro=SUSE%20OpenStack%20Cloud%20Crowbar%208
< 0+ 94 more
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 6.18.5-r0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 3.0.101-108.132.1
- (no CPE)range: < 4.4.180-94.150.1
- (no CPE)range: < 4.4.180-94.150.1
- (no CPE)range: < 3.0.101-108.132.1
- (no CPE)range: < 4.4.121-92.161.1
- (no CPE)range: < 4.4.180-94.150.1
- (no CPE)range: < 4.4.180-94.150.1
- (no CPE)range: < 4.4.180-94.150.1
- (no CPE)range: < 4.4.180-94.150.1
- (no CPE)range: < 4.4.180-94.150.1
- (no CPE)range: < 3.0.101-108.132.1
- (no CPE)range: < 3.0.101-108.132.1
- (no CPE)range: < 3.0.101-108.132.1
- (no CPE)range: < 4.4.180-94.150.1
- (no CPE)range: < 3.0.101-108.132.1
- (no CPE)range: < 4.4.121-92.161.1
- (no CPE)range: < 4.4.180-94.150.1
- (no CPE)range: < 4.4.180-94.150.1
- (no CPE)range: < 4.4.180-94.150.1
- (no CPE)range: < 4.4.180-94.150.1
- (no CPE)range: < 4.4.180-94.150.1
- (no CPE)range: < 4.4.180-94.150.1
- (no CPE)range: < 3.0.101-108.132.1
- (no CPE)range: < 4.4.121-92.161.1
- (no CPE)range: < 4.4.180-94.150.1
- (no CPE)range: < 4.4.180-94.150.1
- (no CPE)range: < 4.4.180-94.150.1
- (no CPE)range: < 4.4.180-94.150.1
- (no CPE)range: < 4.4.180-94.150.1
- (no CPE)range: < 3.0.101-108.132.1
- (no CPE)range: < 3.0.101-108.132.1
- (no CPE)range: < 1-4.3.1
- (no CPE)range: < 1-4.3.1
- (no CPE)range: < 1-4.3.1
- (no CPE)range: < 1-4.3.1
- (no CPE)range: < 1-4.3.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

bugzilla.redhat.com/show_bug.cgimitrex_refsource_MISC
git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/mitrex_refsource_MISC
www.oracle.com/security-alerts/cpuoct2021.htmlmitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000