1. Home
  2. Vulnerabilities
  3. CVE-2021-4001

CVE-2021-4001

CVSS v3.1 4.1 (Medium)
41% Progress
CVSS v2.0 4.7 (Medium)
47% Progress
EPSS 0.04 % (5th)
0.04% Progress
Affected Products 1
Advisories 16
Info CVSS EPSS CAPEC Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

A race condition was found in the Linux kernel's ebpf verifier between bpf_map_update_elem and bpf_map_freeze due to a missing lock in kernel/bpf/syscall.c. In this flaw, a local user with a special privilege (cap_sys_admin or cap_bpf) can modify the frozen mapped address space. This flaw affects kernel versions prior to 5.16 rc2.

Weaknesses
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition
CVE Status
PUBLISHED
CNA
Red Hat, Inc.
Published Date
2022-01-21 19:15:09
(2 years ago)
Updated Date
2022-11-16 03:36:38
(22 months ago)

Affected Products

Linux

Configuration #1

    CPE23 From Up To
  Linux Kernel 5.15 and prior versions cpe:2.3:o:linux:linux_kernel <= 5.15
  Linux Kernel 5.16 Rc1 cpe:2.3:o:linux:linux_kernel:5.16:rc1