Unrated severityNVD Advisory· Published Aug 18, 2021· Updated Aug 3, 2024

CVE-2021-21781

Description

An information disclosure vulnerability exists in the ARM SIGPAGE functionality of Linux Kernel v5.4.66 and v5.4.54. The latest version (5.11-rc4) seems to still be vulnerable. A userland application can read the contents of the sigpage, which can leak kernel memory contents. An attacker can read a process’s memory at a specific offset to trigger this vulnerability. This was fixed in kernel releases: 4.14.222 4.19.177 5.4.99 5.10.17 5.11

Affected products

Linux/Linux Kerneldescription
osv-coords91 versions
pkg:rpm/almalinux/bpftool pkg:rpm/almalinux/kernel pkg:rpm/almalinux/kernel-abi-stablelists pkg:rpm/almalinux/kernel-core pkg:rpm/almalinux/kernel-cross-headers pkg:rpm/almalinux/kernel-debug pkg:rpm/almalinux/kernel-debug-core pkg:rpm/almalinux/kernel-debug-devel pkg:rpm/almalinux/kernel-debug-modules pkg:rpm/almalinux/kernel-debug-modules-extra pkg:rpm/almalinux/kernel-devel pkg:rpm/almalinux/kernel-doc pkg:rpm/almalinux/kernel-headers pkg:rpm/almalinux/kernel-modules pkg:rpm/almalinux/kernel-modules-extra pkg:rpm/almalinux/kernel-tools pkg:rpm/almalinux/kernel-tools-libs pkg:rpm/almalinux/kernel-tools-libs-devel pkg:rpm/almalinux/perf pkg:rpm/almalinux/python3-perf pkg:rpm/opensuse/dtb-aarch64&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/kernel-64kb&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/kernel-azure&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/kernel-debug&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-debug&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/kernel-default-base&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-default-base&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/kernel-default&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-default&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/kernel-docs&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-docs&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/kernel-kvmsmall&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-kvmsmall&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/kernel-obs-build&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-obs-build&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/kernel-obs-qa&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-obs-qa&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/kernel-preempt&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-preempt&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/kernel-source-azure&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/kernel-source&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-source&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/kernel-syms-azure&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/kernel-syms&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-syms&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/kernel-zfcpdump&distro=openSUSE%20Leap%2015.3 pkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3 pkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP2 pkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP3 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Micro%205.0 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP2 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP3 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP2 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP3 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Micro%205.0 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Legacy%2015%20SP2 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Legacy%2015%20SP3 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP2 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP3 pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP2 pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP3 pkg:rpm/suse/kernel-livepatch-SLE15-SP2_Update_18&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP2 pkg:rpm/suse/kernel-livepatch-SLE15-SP3_Update_5&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP3 pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP2 pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP3 pkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2 pkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3 pkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP2 pkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP3 pkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP2 pkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP3 pkg:rpm/suse/kernel-rt_debug&distro=SUSE%20Real%20Time%20Module%2015%20SP2 pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.0 pkg:rpm/suse/kernel-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP2 pkg:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP2 pkg:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP3 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP2 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP3 pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP2 pkg:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP2 pkg:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP3 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP2 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP3 pkg:rpm/suse/kernel-syms-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP2 pkg:rpm/suse/kernel-zfcpdump&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3
< 4.18.0-372.9.1.el8+ 90 more
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-38.17.1
- (no CPE)range: < 5.3.18-lp152.87.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-lp152.87.1.lp152.8.40.1
- (no CPE)range: < 5.3.18-59.19.1.18.10.1
- (no CPE)range: < 5.3.18-lp152.87.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-lp152.87.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-lp152.87.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-lp152.87.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-lp152.87.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-lp152.87.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-38.17.1
- (no CPE)range: < 5.3.18-lp152.87.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-38.17.1
- (no CPE)range: < 5.3.18-lp152.87.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-18.61.1
- (no CPE)range: < 5.3.18-38.17.1
- (no CPE)range: < 5.3.18-24.78.1.9.36.1
- (no CPE)range: < 5.3.18-24.78.1.9.36.1
- (no CPE)range: < 5.3.18-59.19.1.18.10.1
- (no CPE)range: < 5.3.18-24.78.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-24.78.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-24.78.1
- (no CPE)range: < 5.3.18-24.78.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-24.78.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-24.78.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-24.78.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 1-5.3.1
- (no CPE)range: < 1-7.3.1
- (no CPE)range: < 5.3.18-24.78.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-24.78.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-24.78.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-24.78.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-48.1
- (no CPE)range: < 5.3.18-48.1
- (no CPE)range: < 5.3.18-48.1
- (no CPE)range: < 5.3.18-18.61.1
- (no CPE)range: < 5.3.18-38.17.1
- (no CPE)range: < 5.3.18-24.78.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-24.78.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-48.1
- (no CPE)range: < 5.3.18-18.61.1
- (no CPE)range: < 5.3.18-38.17.1
- (no CPE)range: < 5.3.18-24.78.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-48.1
- (no CPE)range: < 5.3.18-59.19.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

talosintelligence.com/vulnerability_reports/TALOS-2021-1243mitrex_refsource_MISC
www.oracle.com/security-alerts/cpujul2022.htmlmitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000