Unrated severityNVD Advisory· Published Jan 21, 2022· Updated Aug 3, 2024
CVE-2021-4001
CVE-2021-4001
Description
A race condition was found in the Linux kernel's ebpf verifier between bpf_map_update_elem and bpf_map_freeze due to a missing lock in kernel/bpf/syscall.c. In this flaw, a local user with a special privilege (cap_sys_admin or cap_bpf) can modify the frozen mapped address space. This flaw affects kernel versions prior to 5.16 rc2.
Affected products
126- Linux/Linux kerneldescription
- osv-coords125 versionspkg:rpm/opensuse/connman&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/dtb-aarch64&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/kernel-64kb&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/kernel-azure&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/kernel-debug&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/kernel-default-base&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/kernel-default&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/kernel-docs&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/kernel-kvmsmall&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/kernel-obs-build&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/kernel-obs-qa&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/kernel-preempt&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/kernel-source-azure&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/kernel-source&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/kernel-syms-azure&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/kernel-syms&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/kernel-zfcpdump&distro=openSUSE%20Leap%2015.3pkg:rpm/suse/connman&distro=SUSE%20Package%20Hub%2015%20SP3pkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3pkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP3pkg:rpm/suse/kernel-default-base&distro=SUSE%20Enterprise%20Storage%207pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOSpkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Micro%205.0pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Micro%205.1pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-BCLpkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/kernel-default-base&distro=SUSE%20Manager%20Proxy%204.1pkg:rpm/suse/kernel-default-base&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.1pkg:rpm/suse/kernel-default-base&distro=SUSE%20Manager%20Server%204.1pkg:rpm/suse/kernel-default&distro=SUSE%20Enterprise%20Storage%207pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP2pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP3pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOSpkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP2pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP3pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Micro%205.0pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Micro%205.1pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Legacy%2015%20SP3pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-BCLpkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP3pkg:rpm/suse/kernel-default&distro=SUSE%20Manager%20Proxy%204.1pkg:rpm/suse/kernel-default&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.1pkg:rpm/suse/kernel-default&distro=SUSE%20Manager%20Server%204.1pkg:rpm/suse/kernel-docs&distro=SUSE%20Enterprise%20Storage%207pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOSpkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP3pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-BCLpkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/kernel-docs&distro=SUSE%20Manager%20Proxy%204.1pkg:rpm/suse/kernel-docs&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.1pkg:rpm/suse/kernel-docs&distro=SUSE%20Manager%20Server%204.1pkg:rpm/suse/kernel-livepatch-SLE15-SP2_Update_23&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP2pkg:rpm/suse/kernel-livepatch-SLE15-SP3_Update_0&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP3pkg:rpm/suse/kernel-livepatch-SLE15-SP3_Update_10&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP3pkg:rpm/suse/kernel-livepatch-SLE15-SP3_Update_11&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP3pkg:rpm/suse/kernel-livepatch-SLE15-SP3_Update_1&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP3pkg:rpm/suse/kernel-livepatch-SLE15-SP3_Update_2&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP3pkg:rpm/suse/kernel-livepatch-SLE15-SP3_Update_3&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP3pkg:rpm/suse/kernel-livepatch-SLE15-SP3_Update_4&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP3pkg:rpm/suse/kernel-livepatch-SLE15-SP3_Update_5&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP3pkg:rpm/suse/kernel-livepatch-SLE15-SP3_Update_6&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP3pkg:rpm/suse/kernel-livepatch-SLE15-SP3_Update_7&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP3pkg:rpm/suse/kernel-livepatch-SLE15-SP3_Update_9&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP3pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Enterprise%20Storage%207pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOSpkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP3pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Manager%20Server%204.1pkg:rpm/suse/kernel-preempt&distro=SUSE%20Enterprise%20Storage%207pkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOSpkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3pkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP3pkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-BCLpkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP3pkg:rpm/suse/kernel-preempt&distro=SUSE%20Manager%20Proxy%204.1pkg:rpm/suse/kernel-preempt&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.1pkg:rpm/suse/kernel-preempt&distro=SUSE%20Manager%20Server%204.1pkg:rpm/suse/kernel-rt_debug&distro=SUSE%20Real%20Time%20Module%2015%20SP2pkg:rpm/suse/kernel-rt_debug&distro=SUSE%20Real%20Time%20Module%2015%20SP3pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.0pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.1pkg:rpm/suse/kernel-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP2pkg:rpm/suse/kernel-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP3pkg:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP3pkg:rpm/suse/kernel-source&distro=SUSE%20Enterprise%20Storage%207pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOSpkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP3pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-BCLpkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/kernel-source&distro=SUSE%20Manager%20Proxy%204.1pkg:rpm/suse/kernel-source&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.1pkg:rpm/suse/kernel-source&distro=SUSE%20Manager%20Server%204.1pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP2pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP3pkg:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP3pkg:rpm/suse/kernel-syms&distro=SUSE%20Enterprise%20Storage%207pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOSpkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP3pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-BCLpkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/kernel-syms&distro=SUSE%20Manager%20Proxy%204.1pkg:rpm/suse/kernel-syms&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.1pkg:rpm/suse/kernel-syms&distro=SUSE%20Manager%20Server%204.1pkg:rpm/suse/kernel-syms-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP2pkg:rpm/suse/kernel-syms-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP3pkg:rpm/suse/kernel-zfcpdump&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3
< 1.41-bp153.2.3.1+ 124 more
- (no CPE)range: < 1.41-bp153.2.3.1
- (no CPE)range: < 5.3.18-59.40.1
- (no CPE)range: < 5.3.18-59.40.1
- (no CPE)range: < 5.3.18-38.34.1
- (no CPE)range: < 5.3.18-59.40.1
- (no CPE)range: < 5.3.18-59.40.1.18.25.1
- (no CPE)range: < 5.3.18-59.40.1
- (no CPE)range: < 5.3.18-59.40.1
- (no CPE)range: < 5.3.18-59.40.1
- (no CPE)range: < 5.3.18-59.40.1
- (no CPE)range: < 5.3.18-59.40.1
- (no CPE)range: < 5.3.18-59.40.1
- (no CPE)range: < 5.3.18-38.34.1
- (no CPE)range: < 5.3.18-59.40.1
- (no CPE)range: < 5.3.18-38.34.1
- (no CPE)range: < 5.3.18-59.40.1
- (no CPE)range: < 5.3.18-59.40.1
- (no CPE)range: < 1.41-bp153.2.3.1
- (no CPE)range: < 5.3.18-59.40.1
- (no CPE)range: < 5.3.18-38.34.1
- (no CPE)range: < 5.3.18-24.99.1.9.46.1
- (no CPE)range: < 5.3.18-24.99.1.9.46.1
- (no CPE)range: < 5.3.18-24.99.1.9.46.1
- (no CPE)range: < 5.3.18-24.99.1.9.46.1
- (no CPE)range: < 5.3.18-59.40.1.18.25.1
- (no CPE)range: < 5.3.18-59.40.1.18.25.1
- (no CPE)range: < 5.3.18-24.99.1.9.46.1
- (no CPE)range: < 5.3.18-24.99.1.9.46.1
- (no CPE)range: < 5.3.18-24.99.1.9.46.1
- (no CPE)range: < 5.3.18-24.99.1.9.46.1
- (no CPE)range: < 5.3.18-24.99.1.9.46.1
- (no CPE)range: < 5.3.18-24.99.1.9.46.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-59.40.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-59.40.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-59.40.1
- (no CPE)range: < 5.3.18-59.40.1
- (no CPE)range: < 5.3.18-59.40.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-59.40.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-59.40.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 1-5.3.1
- (no CPE)range: < 13-150200.3.1
- (no CPE)range: < 5-150300.2.1
- (no CPE)range: < 1-7.3.1
- (no CPE)range: < 11-150300.2.1
- (no CPE)range: < 11-150300.2.1
- (no CPE)range: < 11-150300.2.1
- (no CPE)range: < 10-150300.2.1
- (no CPE)range: < 9-150300.2.1
- (no CPE)range: < 7-150300.2.1
- (no CPE)range: < 7-150300.2.1
- (no CPE)range: < 6-150300.2.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-59.40.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-59.40.1
- (no CPE)range: < 5.3.18-59.40.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-59.40.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-65.2
- (no CPE)range: < 5.3.18-68.1
- (no CPE)range: < 5.3.18-65.2
- (no CPE)range: < 5.3.18-68.1
- (no CPE)range: < 5.3.18-65.2
- (no CPE)range: < 5.3.18-68.1
- (no CPE)range: < 5.3.18-38.34.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-59.40.1
- (no CPE)range: < 5.3.18-59.40.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-65.2
- (no CPE)range: < 5.3.18-68.1
- (no CPE)range: < 5.3.18-38.34.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-59.40.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-24.99.1
- (no CPE)range: < 5.3.18-65.1
- (no CPE)range: < 5.3.18-68.1
- (no CPE)range: < 5.3.18-59.40.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2News mentions
0No linked articles in our index yet.