Home

CVE-2021-3679

Description

A lack of CPU resource in the Linux kernel tracing module functionality in versions prior to 5.14-rc3 was found in the way user uses trace ring buffer in a specific way. Only privileged local users (with CAP_SYS_ADMIN capability) could use this flaw to starve the resources causing denial of service.

Risk Information

Base Score
5.5
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
1.295

Associated Vulnerability

VulnerabilityOS Platform
Kernel-uek update (ELSA-2021-9460) kernel-uek-4.14.35-2047.507.7.5.el7uek.x86_64.rpmLinux
Kernel-uek-debug update (ELSA-2021-9460) kernel-uek-debug-4.14.35-2047.507.7.5.el7uek.x86_64.rpmLinux
Kernel-uek-debug-devel update (ELSA-2021-9460) kernel-uek-debug-devel-4.14.35-2047.507.7.5.el7uek.x86_64.rpmLinux
Kernel-uek-devel update (ELSA-2021-9460) kernel-uek-devel-4.14.35-2047.507.7.5.el7uek.x86_64.rpmLinux
Kernel-uek-doc update (ELSA-2021-9460) kernel-uek-doc-4.14.35-2047.507.7.5.el7uek.noarch.rpmLinux
Kernel-uek-tools update (ELSA-2021-9460) kernel-uek-tools-4.14.35-2047.507.7.5.el7uek.x86_64.rpmLinux
Linux kernel (USN-5092-1) linux-image-aws_5.11.0.1019.20_amd64.debLinux
Linux kernel (USN-5092-1) linux-image-aws_5.11.0.1019.20~20.04.18_amd64.debLinux
Linux kernel (USN-5092-1) linux-image-gcp_5.11.0.1020.20_amd64.debLinux
Linux kernel (USN-5092-1) linux-image-gke_5.11.0.1020.20_amd64.debLinux
Linux kernel (USN-5092-1) linux-image-kvm_5.11.0.1017.18_amd64.debLinux
Linux kernel (USN-5092-1) linux-image-oracle_5.11.0.1019.20_amd64.debLinux
Linux kernel (USN-5092-1) linux-image-generic_5.11.0.37.39_amd64.debLinux
Linux kernel (USN-5092-1) linux-image-virtual_5.11.0.37.39_amd64.debLinux
Linux kernel (USN-5092-1) linux-image-oem-20.04_5.11.0.37.39_amd64.debLinux
Linux kernel (USN-5092-1) linux-image-lowlatency_5.11.0.37.39_amd64.debLinux
Linux kernel (USN-5092-1) linux-image-5.11.0-1017-kvm_5.11.0-1017.18_amd64.debLinux
Linux kernel (USN-5092-1) linux-image-5.11.0-1019-aws_5.11.0-1019.20_amd64.debLinux
Linux kernel (USN-5092-1) linux-image-5.11.0-1019-aws_5.11.0-1019.20~20.04.1_amd64.debLinux
Linux kernel (USN-5092-1) linux-image-5.11.0-1020-gcp_5.11.0-1020.22_amd64.debLinux
Linux kernel (USN-5092-1) linux-image-5.11.0-37-generic_5.11.0-37.41_amd64.debLinux
Linux kernel (USN-5092-1) linux-image-5.11.0-1019-oracle_5.11.0-1019.20_amd64.debLinux
Linux kernel (USN-5092-1) linux-image-5.11.0-37-lowlatency_5.11.0-37.41_amd64.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-5092-2) linux-image-azure_5.11.0.1017.18_amd64.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-5092-2) linux-image-oracle_5.11.0.1019.20~20.04.12_amd64.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-5092-2) linux-image-azure-edge_5.11.0.1017.18~20.04.16_amd64.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-5092-2) linux-image-5.11.0-1017-azure_5.11.0-1017.18_amd64.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-5092-2) linux-image-5.11.0-1017-azure_5.11.0-1017.18~20.04.1_amd64.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-5092-2) linux-image-5.11.0-37-generic_5.11.0-37.41~20.04.2_amd64.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-5092-2) linux-image-generic-hwe-20.04_5.11.0.37.41~20.04.16_amd64.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-5092-2) linux-image-virtual-hwe-20.04_5.11.0.37.41~20.04.16_amd64.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-5092-2) linux-image-5.11.0-1019-oracle_5.11.0-1019.20~20.04.1_amd64.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-5092-2) linux-image-5.11.0-37-lowlatency_5.11.0-37.41~20.04.2_amd64.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-5092-2) linux-image-lowlatency-hwe-20.04_5.11.0.37.41~20.04.16_amd64.debLinux
Linux kernel (USN-5094-1) linux-image-kvm_4.15.0.1100.96_amd64.debLinux
Linux kernel (USN-5094-1) linux-image-generic_4.15.0.159.148_i386.debLinux
Linux kernel (USN-5094-1) linux-image-generic_4.15.0.159.148_amd64.debLinux
Linux kernel (USN-5094-1) linux-image-virtual_4.15.0.159.148_i386.debLinux
Linux kernel (USN-5094-1) linux-image-virtual_4.15.0.159.148_amd64.debLinux
Linux kernel (USN-5094-1) linux-image-dell300x_4.15.0.1028.30_amd64.debLinux
Linux kernel (USN-5094-1) linux-image-lowlatency_4.15.0.159.148_i386.debLinux
Linux kernel (USN-5094-1) linux-image-lowlatency_4.15.0.159.148_amd64.debLinux
Linux kernel (USN-5094-1) linux-image-aws-lts-18.04_4.15.0.1112.115_amd64.debLinux
Linux kernel (USN-5094-1) linux-image-gcp-lts-18.04_4.15.0.1109.128_amd64.debLinux
Linux kernel (USN-5094-1) linux-image-4.15.0-1100-kvm_4.15.0-1100.102_amd64.debLinux
Linux kernel (USN-5094-1) linux-image-4.15.0-1109-gcp_4.15.0-1109.123_amd64.debLinux
Linux kernel (USN-5094-1) linux-image-4.15.0-1112-aws_4.15.0-1112.119_amd64.debLinux
Linux kernel (USN-5094-1) linux-image-azure-lts-18.04_4.15.0.1124.97_amd64.debLinux
Linux kernel (USN-5094-1) linux-image-oracle-lts-18.04_4.15.0.1081.91_amd64.debLinux
Linux kernel (USN-5094-1) linux-image-4.15.0-1124-azure_4.15.0-1124.137_amd64.debLinux
Linux kernel (USN-5094-1) linux-image-4.15.0-1081-oracle_4.15.0-1081.89_amd64.debLinux
Linux kernel (USN-5094-1) linux-image-4.15.0-159-generic_4.15.0-159.167_i386.debLinux
Linux kernel (USN-5094-1) linux-image-4.15.0-159-generic_4.15.0-159.167_amd64.debLinux
Linux kernel (USN-5094-1) linux-image-4.15.0-1028-dell300x_4.15.0-1028.33_amd64.debLinux
Linux kernel (USN-5094-1) linux-image-4.15.0-159-lowlatency_4.15.0-159.167_i386.debLinux
Linux kernel (USN-5094-1) linux-image-4.15.0-159-lowlatency_4.15.0-159.167_amd64.debLinux
Linux kernel for OEM systems (USN-5096-1) linux-image-oem-20.04c_5.13.0.1014.18_amd64.debLinux
Linux kernel for OEM systems (USN-5096-1) linux-image-5.13.0-1014-oem_5.13.0-1014.18_amd64.debLinux
Kernel-uek update (ELSA-2021-9473) kernel-uek-4.1.12-124.56.1.el7uek.x86_64.rpmLinux
Kernel-uek-debug update (ELSA-2021-9473) kernel-uek-debug-4.1.12-124.56.1.el7uek.x86_64.rpmLinux
Kernel-uek-debug-devel update (ELSA-2021-9473) kernel-uek-debug-devel-4.1.12-124.56.1.el7uek.x86_64.rpmLinux
Kernel-uek-devel update (ELSA-2021-9473) kernel-uek-devel-4.1.12-124.56.1.el7uek.x86_64.rpmLinux
Kernel-uek-doc update (ELSA-2021-9473) kernel-uek-doc-4.1.12-124.56.1.el7uek.noarch.rpmLinux
Kernel-uek-firmware update (ELSA-2021-9473) kernel-uek-firmware-4.1.12-124.56.1.el7uek.noarch.rpmLinux
Kernel-uek update (ELSA-2021-9485) kernel-uek-4.14.35-2047.508.3.el7uek.x86_64.rpmLinux
Kernel-uek-debug update (ELSA-2021-9485) kernel-uek-debug-4.14.35-2047.508.3.el7uek.x86_64.rpmLinux
Kernel-uek-debug-devel update (ELSA-2021-9485) kernel-uek-debug-devel-4.14.35-2047.508.3.el7uek.x86_64.rpmLinux
Kernel-uek-devel update (ELSA-2021-9485) kernel-uek-devel-4.14.35-2047.508.3.el7uek.x86_64.rpmLinux
Kernel-uek-doc update (ELSA-2021-9485) kernel-uek-doc-4.14.35-2047.508.3.el7uek.noarch.rpmLinux
Kernel-uek-tools update (ELSA-2021-9485) kernel-uek-tools-4.14.35-2047.508.3.el7uek.x86_64.rpmLinux
Linux kernel for OEM systems (USN-5115-1) linux-image-oem-20.04_5.10.0.1050.52_amd64.debLinux
Linux kernel for OEM systems (USN-5115-1) linux-image-oem-20.04b_5.10.0.1050.52_amd64.debLinux
Linux kernel for OEM systems (USN-5115-1) linux-image-5.10.0-1050-oem_5.10.0-1050.52_amd64.debLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update bpftool-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-abi-stablelists-4.18.0-348.el8.noarch.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-core-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-cross-headers-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-debug-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-debug-core-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-debug-devel-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-debug-modules-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-debug-modules-extra-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-devel-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-doc-4.18.0-348.el8.noarch.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-headers-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-modules-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-modules-extra-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-tools-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-tools-libs-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update perf-4.18.0-348.el8.x86_64.rpmLinux
(RHSA-2021:4356) kernel security, bug fix, and enhancement update python3-perf-4.18.0-348.el8.x86_64.rpmLinux
SUSE-SU-2021:14849-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-default-extra-3.0.101-108.132.1.i586.rpmLinux
SUSE-SU-2021:14849-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-default-extra-3.0.101-108.132.1.x86_64.rpmLinux
SUSE-SU-2021:14849-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-pae-extra-3.0.101-108.132.1.i586.rpmLinux
SUSE-SU-2021:14849-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-trace-extra-3.0.101-108.132.1.x86_64.rpmLinux
SUSE-SU-2021:14849-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-xen-extra-3.0.101-108.132.1.i586.rpmLinux
SUSE-SU-2021:14849-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-xen-extra-3.0.101-108.132.1.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234