CVE-2021-4001
Description
A race condition was found in the Linux kernels ebpf verifier between bpf_map_update_elem and bpf_map_freeze due to a missing lock in kernel/bpf/syscall.c. In this flaw, a local user with a special privilege (cap_sys_admin or cap_bpf) can modify the frozen mapped address space. This flaw affects kernel versions prior to 5.16 rc2.
Risk Information
Base Score
4.1
MODERATE
Vector
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:N
EPSS Score
Exploitation Probability
0.016
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Linux kernel for OEM systems (USN-5207-1) linux-image-oem-20.04_5.10.0.1053.55_amd64.deb | Linux |
| Linux kernel for OEM systems (USN-5207-1) linux-image-oem-20.04b_5.10.0.1053.55_amd64.deb | Linux |
| Linux kernel for OEM systems (USN-5207-1) linux-image-5.10.0-1053-oem_5.10.0-1053.55_amd64.deb | Linux |
| Linux kernel (USN-5265-1) linux-image-aws_5.13.0.1012.13_amd64.deb | Linux |
| Linux kernel (USN-5265-1) linux-image-aws_5.13.0.1015.16~20.04.8_amd64.deb | Linux |
| Linux kernel (USN-5265-1) linux-image-gcp_5.13.0.1013.12_amd64.deb | Linux |
| Linux kernel (USN-5265-1) linux-image-gcp_5.13.0.1015.18~20.04.2_amd64.deb | Linux |
| Linux kernel (USN-5265-1) linux-image-gke_5.13.0.1013.12_amd64.deb | Linux |
| Linux kernel (USN-5265-1) linux-image-kvm_5.13.0.1011.11_amd64.deb | Linux |
| Linux kernel (USN-5265-1) linux-image-oracle_5.13.0.1016.16_amd64.deb | Linux |
| Linux kernel (USN-5265-1) linux-image-oracle_5.13.0.1019.23~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-5265-1) linux-image-generic_5.13.0.28.38_amd64.deb | Linux |
| Linux kernel (USN-5265-1) linux-image-virtual_5.13.0.28.38_amd64.deb | Linux |
| Linux kernel (USN-5265-1) linux-image-oem-20.04_5.13.0.28.38_amd64.deb | Linux |
| Linux kernel (USN-5265-1) linux-image-lowlatency_5.13.0.28.38_amd64.deb | Linux |
| Linux kernel (USN-5265-1) linux-image-oem-20.04c_5.13.0.1029.31_amd64.deb | Linux |
| Linux kernel (USN-5265-1) linux-image-5.11.0-1029-gcp_5.11.0-1029.33~20.04.3_amd64.deb | Linux |
| Linux kernel (USN-5265-1) linux-image-5.13.0-1011-kvm_5.13.0-1011.12_amd64.deb | Linux |
| Linux kernel (USN-5265-1) linux-image-5.13.0-1012-aws_5.13.0-1012.13_amd64.deb | Linux |
| Linux kernel (USN-5265-1) linux-image-5.13.0-1013-gcp_5.13.0-1013.16_amd64.deb | Linux |
| Linux kernel (USN-5265-1) linux-image-5.13.0-1029-oem_5.13.0-1029.36_amd64.deb | Linux |
| Linux kernel (USN-5265-1) linux-image-5.13.0-28-generic_5.13.0-28.31_amd64.deb | Linux |
| Linux kernel (USN-5265-1) linux-image-5.13.0-28-generic_5.13.0-28.31~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-5265-1) linux-image-generic-hwe-20.04_5.13.0.28.31~20.04.15_amd64.deb | Linux |
| Linux kernel (USN-5265-1) linux-image-virtual-hwe-20.04_5.13.0.28.31~20.04.15_amd64.deb | Linux |
| Linux kernel (USN-5265-1) linux-image-5.11.0-1028-oracle_5.11.0-1028.31~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-5265-1) linux-image-5.13.0-1016-oracle_5.13.0-1016.20_amd64.deb | Linux |
| Linux kernel (USN-5265-1) linux-image-5.13.0-28-lowlatency_5.13.0-28.31_amd64.deb | Linux |
| Linux kernel (USN-5265-1) linux-image-5.13.0-28-lowlatency_5.13.0-28.31~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-5265-1) linux-image-lowlatency-hwe-20.04_5.13.0.28.31~20.04.15_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-aws_5.4.0.1103.81_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-gcp_5.4.0.1106.82_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-ibm_5.4.0.1050.61_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-kvm_5.4.0.1100.95_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-oem_5.4.0.164.161_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-oem_5.4.0.96.109~18.04.84_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-azure_5.4.0.1109.82_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-gkeop_5.4.0.1078.76_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-oracle_5.4.0.1102.111~18.04.74_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-generic_5.4.0.164.161_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-virtual_5.4.0.164.161_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-oem-osp1_5.4.0.164.161_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-oem-osp1_5.4.0.96.109~18.04.84_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-gkeop-5.4_5.4.0.1078.76_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-lowlatency_5.4.0.164.161_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-aws-lts-20.04_5.4.0.1111.108_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-gcp-lts-20.04_5.4.0.1115.117_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-ibm-lts-20.04_5.4.0.1058.87_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-5.4.0-1023-iot_5.4.0-1023.24_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-5.4.0-1058-ibm_5.4.0-1058.63_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-5.4.0-1100-kvm_5.4.0-1100.106_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-5.4.0-1111-aws_5.4.0-1111.120_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-5.4.0-1115-gcp_5.4.0-1115.124_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-azure-lts-20.04_5.4.0.1117.110_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-5.4.0-1078-gkeop_5.4.0-1078.82_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-5.4.0-1117-azure_5.4.0-1117.124_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-oracle-lts-20.04_5.4.0.1110.103_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-5.4.0-1110-oracle_5.4.0-1110.119_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-5.4.0-164-generic_5.4.0-164.181_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-generic-hwe-18.04_5.4.0.96.109~18.04.84_i386.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-generic-hwe-18.04_5.4.0.96.109~18.04.84_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-virtual-hwe-18.04_5.4.0.96.109~18.04.84_i386.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-virtual-hwe-18.04_5.4.0.96.109~18.04.84_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-5.4.0-164-lowlatency_5.4.0-164.181_amd64.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-lowlatency-hwe-18.04_5.4.0.96.109~18.04.84_i386.deb | Linux |
| Linux kernel (USN-6417-1) linux-image-lowlatency-hwe-18.04_5.4.0.96.109~18.04.84_amd64.deb | Linux |
| Linux kernel (USN-5265-1) linux-image-5.11.0-1028-azure_5.11.0-1028.31~20.04.2_amd64.deb | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234