CVE-2021-4197
Description
An unprivileged write to the file handler flaw in the Linux kernels control groups and namespaces subsystem was found in the way users have access to some less privileged process that are controlled by cgroups and have higher privileged parent process. It is actually both for cgroup2 and cgroup1 versions of control groups. A local user could use this flaw to crash the system or escalate their privileges on the system.
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.012
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| SUSE-SU-2022:0364-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-4.12.14-122.110.1.x86_64.rpm | Linux |
| SUSE-SU-2022:0364-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-base-4.12.14-122.110.1.x86_64.rpm | Linux |
| SUSE-SU-2022:0364-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-base-debuginfo-4.12.14-122.110.1.x86_64.rpm | Linux |
| SUSE-SU-2022:0364-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-debuginfo-4.12.14-122.110.1.x86_64.rpm | Linux |
| SUSE-SU-2022:0364-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-debugsource-4.12.14-122.110.1.x86_64.rpm | Linux |
| SUSE-SU-2022:0364-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-devel-4.12.14-122.110.1.x86_64.rpm | Linux |
| SUSE-SU-2022:0364-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-devel-debuginfo-4.12.14-122.110.1.x86_64.rpm | Linux |
| SUSE-SU-2022:0364-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-devel-4.12.14-122.110.1.noarch.rpm | Linux |
| SUSE-SU-2022:0364-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-macros-4.12.14-122.110.1.noarch.rpm | Linux |
| SUSE-SU-2022:0364-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-source-4.12.14-122.110.1.noarch.rpm | Linux |
| SUSE-SU-2022:0364-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-syms-4.12.14-122.110.1.x86_64.rpm | Linux |
| SUSE-SU-2022:0372-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-4.12.14-16.88.1.x86_64.rpm | Linux |
| SUSE-SU-2022:0372-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-base-4.12.14-16.88.1.x86_64.rpm | Linux |
| SUSE-SU-2022:0372-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-base-debuginfo-4.12.14-16.88.1.x86_64.rpm | Linux |
| SUSE-SU-2022:0372-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-debuginfo-4.12.14-16.88.1.x86_64.rpm | Linux |
| SUSE-SU-2022:0372-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-debugsource-4.12.14-16.88.1.x86_64.rpm | Linux |
| SUSE-SU-2022:0372-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-devel-4.12.14-16.88.1.x86_64.rpm | Linux |
| SUSE-SU-2022:0372-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-devel-azure-4.12.14-16.88.1.noarch.rpm | Linux |
| SUSE-SU-2022:0372-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-source-azure-4.12.14-16.88.1.noarch.rpm | Linux |
| SUSE-SU-2022:0372-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-syms-azure-4.12.14-16.88.1.x86_64.rpm | Linux |
| Linux kernel (USN-5337-1) linux-image-aws_5.13.0.1019.20_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-aws_5.13.0.1022.24~20.04.15_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-gcp_5.13.0.1021.19_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-gke_5.13.0.1021.19_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-kvm_5.13.0.1018.18_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-generic_5.13.0.37.46_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-virtual_5.13.0.37.46_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-oem-20.04_5.13.0.37.46_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-lowlatency_5.13.0.37.46_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-5.13.0-1018-kvm_5.13.0-1018.19_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-5.13.0-1019-aws_5.13.0-1019.21_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-5.13.0-1019-aws_5.13.0-1019.21~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-5.13.0-1021-gcp_5.13.0-1021.25_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-5.13.0-37-generic_5.13.0-37.42_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-5.13.0-37-generic_5.13.0-37.42~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-generic-hwe-20.04_5.13.0.37.42~20.04.22_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-virtual-hwe-20.04_5.13.0.37.42~20.04.22_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-5.13.0-37-lowlatency_5.13.0-37.42_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-5.13.0-37-lowlatency_5.13.0-37.42~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-lowlatency-hwe-20.04_5.13.0.37.42~20.04.22_amd64.deb | Linux |
| Linux kernel for Microsoft Azure cloud systems (USN-5368-1) linux-image-azure_5.13.0.1021.24~20.04.10_amd64.deb | Linux |
| Linux kernel for Microsoft Azure cloud systems (USN-5368-1) linux-image-oracle_5.13.0.1025.30~20.04.1_amd64.deb | Linux |
| Linux kernel for Microsoft Azure cloud systems (USN-5368-1) linux-image-5.13.0-1021-azure_5.13.0-1021.24~20.04.1_amd64.deb | Linux |
| Linux kernel for Microsoft Azure cloud systems (USN-5368-1) linux-image-5.13.0-1025-oracle_5.13.0-1025.30~20.04.1_amd64.deb | Linux |
| (RHSA-2022:1988) kernel security, bug fix, and enhancement update kernel-4.18.0-372.9.1.el8.x86_64.rpm | Linux |
| (RHSA-2022:1988) kernel security, bug fix, and enhancement update kernel-abi-stablelists-4.18.0-372.9.1.el8.noarch.rpm | Linux |
| (RHSA-2022:1988) kernel security, bug fix, and enhancement update kernel-core-4.18.0-372.9.1.el8.x86_64.rpm | Linux |
| (RHSA-2022:1988) kernel security, bug fix, and enhancement update kernel-cross-headers-4.18.0-372.9.1.el8.x86_64.rpm | Linux |
| (RHSA-2022:1988) kernel security, bug fix, and enhancement update kernel-debug-4.18.0-372.9.1.el8.x86_64.rpm | Linux |
| (RHSA-2022:1988) kernel security, bug fix, and enhancement update kernel-debug-core-4.18.0-372.9.1.el8.x86_64.rpm | Linux |
| (RHSA-2022:1988) kernel security, bug fix, and enhancement update kernel-debug-modules-4.18.0-372.9.1.el8.x86_64.rpm | Linux |
| (RHSA-2022:1988) kernel security, bug fix, and enhancement update kernel-debug-modules-extra-4.18.0-372.9.1.el8.x86_64.rpm | Linux |
| (RHSA-2022:1988) kernel security, bug fix, and enhancement update kernel-doc-4.18.0-372.9.1.el8.noarch.rpm | Linux |
| (RHSA-2022:1988) kernel security, bug fix, and enhancement update kernel-modules-4.18.0-372.9.1.el8.x86_64.rpm | Linux |
| (RHSA-2022:1988) kernel security, bug fix, and enhancement update kernel-modules-extra-4.18.0-372.9.1.el8.x86_64.rpm | Linux |
| (RHSA-2022:1988) kernel security, bug fix, and enhancement update kernel-tools-4.18.0-372.9.1.el8.x86_64.rpm | Linux |
| (RHSA-2022:1988) kernel security, bug fix, and enhancement update kernel-tools-libs-4.18.0-372.9.1.el8.x86_64.rpm | Linux |
| (RHSA-2022:1988) kernel security, bug fix, and enhancement update python3-perf-4.18.0-372.9.1.el8.x86_64.rpm | Linux |
| Linux kernel (USN-5467-1) linux-image-aws_5.4.0.1089.68_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-gke_5.4.0.1087.94_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-ibm_5.4.0.1037.65_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-ibm_5.4.0.1037.50_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-kvm_5.4.0.1070.67_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-oem_5.4.0.132.132_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-oem_5.4.0.132.148~18.04.109_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-azure_5.4.0.1095.71_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-gkeop_5.4.0.1057.57_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-oracle_5.4.0.1087.96~18.04.63_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-generic_5.4.0.121.122_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-gke-5.4_5.4.0.1087.94_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-gke-5.4_5.4.0.1080.86~18.04.42_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-virtual_5.4.0.121.122_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-oem-osp1_5.4.0.132.132_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-oem-osp1_5.4.0.132.148~18.04.109_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-azure-fde_5.4.0.1095.101+cvm1.33_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-gkeop-5.4_5.4.0.1057.57_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-gkeop-5.4_5.4.0.1051.54~18.04.48_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-lowlatency_5.4.0.117.120_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-aws-lts-20.04_5.4.0.1089.88_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-gcp-lts-20.04_5.4.0.1093.97_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-ibm-lts-20.04_5.4.0.1037.65_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-5.4.0-1026-ibm_5.4.0-1026.29_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-5.4.0-1026-ibm_5.4.0-1026.29~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-5.4.0-1068-kvm_5.4.0-1068.72_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-5.4.0-1074-gke_5.4.0-1074.79_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-5.4.0-1074-gke_5.4.0-1074.79~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-5.4.0-1078-aws_5.4.0-1078.84_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-5.4.0-1078-aws_5.4.0-1078.84~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-5.4.0-1078-gcp_5.4.0-1078.84_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-azure-lts-20.04_5.4.0.1095.91_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-5.4.0-1046-gkeop_5.4.0-1046.48_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-5.4.0-1046-gkeop_5.4.0-1046.48~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-5.4.0-1083-azure_5.4.0-1083.87_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-5.4.0-1083-azure_5.4.0-1083.87~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-oracle-lts-20.04_5.4.0.1087.83_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-5.4.0-1076-oracle_5.4.0-1076.83_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-5.4.0-1076-oracle_5.4.0-1076.83~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-5.4.0-117-generic_5.4.0-117.132_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-5.4.0-117-generic_5.4.0-117.132~18.04.1_i386.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-5.4.0-117-generic_5.4.0-117.132~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-generic-hwe-18.04_5.4.0.120.136~18.04.100_i386.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-generic-hwe-18.04_5.4.0.120.136~18.04.100_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-virtual-hwe-18.04_5.4.0.132.148~18.04.109_i386.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-virtual-hwe-18.04_5.4.0.132.148~18.04.109_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-5.4.0-1083-azure-fde_5.4.0-1083.87+cvm1.1_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-5.4.0-117-lowlatency_5.4.0-117.132_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-5.4.0-117-lowlatency_5.4.0-117.132~18.04.1_i386.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-5.4.0-117-lowlatency_5.4.0-117.132~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-lowlatency-hwe-18.04_5.4.0.132.148~18.04.109_i386.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-lowlatency-hwe-18.04_5.4.0.132.148~18.04.109_amd64.deb | Linux |
| Kernel-uek update (ELSA-2022-9479) kernel-uek-5.4.17-2136.308.7.el8uek.x86_64.rpm | Linux |
| Kernel-uek-debug update (ELSA-2022-9479) kernel-uek-debug-5.4.17-2136.308.7.el8uek.x86_64.rpm | Linux |
| Kernel-uek-debug-devel update (ELSA-2022-9479) kernel-uek-debug-devel-5.4.17-2136.308.7.el8uek.x86_64.rpm | Linux |
| Kernel-uek-devel update (ELSA-2022-9479) kernel-uek-devel-5.4.17-2136.308.7.el8uek.x86_64.rpm | Linux |
| Kernel-uek-doc update (ELSA-2022-9479) kernel-uek-doc-5.4.17-2136.308.7.el8uek.noarch.rpm | Linux |
| Kernel-uek-container update (ELSA-2022-9480) kernel-uek-container-5.4.17-2136.308.7.el8.x86_64.rpm | Linux |
| Kernel-uek-container-debug update (ELSA-2022-9480) kernel-uek-container-debug-5.4.17-2136.308.7.el8.x86_64.rpm | Linux |
| Linux kernel (USN-5337-1) linux-image-5.13.0-1021-gcp_5.13.0-1021.25~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-gcp_5.4.0.1078.60_amd64.deb | Linux |
| Linux kernel (USN-5467-1) linux-image-5.4.0-1078-gcp_5.4.0-1078.84~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-5515-1) linux-image-4.15.0-1123-kvm_4.15.0-1123.128_amd64.deb | Linux |
| Linux kernel (USN-5515-1) linux-image-4.15.0-1131-gcp_4.15.0-1131.147_amd64.deb | Linux |
| Linux kernel (USN-5515-1) linux-image-4.15.0-1137-aws_4.15.0-1137.148_amd64.deb | Linux |
| Linux kernel (USN-5515-1) linux-image-4.15.0-1146-azure_4.15.0-1146.161_amd64.deb | Linux |
| Linux kernel (USN-5515-1) linux-image-4.15.0-1102-oracle_4.15.0-1102.113_amd64.deb | Linux |
| Linux kernel (USN-5515-1) linux-image-4.15.0-189-generic_4.15.0-189.200_i386.deb | Linux |
| Linux kernel (USN-5515-1) linux-image-4.15.0-189-generic_4.15.0-189.200_amd64.deb | Linux |
| Linux kernel (USN-5515-1) linux-image-4.15.0-1049-dell300x_4.15.0-1049.54_amd64.deb | Linux |
| Linux kernel (USN-5515-1) linux-image-4.15.0-189-lowlatency_4.15.0-189.200_i386.deb | Linux |
| Linux kernel (USN-5515-1) linux-image-4.15.0-189-lowlatency_4.15.0-189.200_amd64.deb | Linux |
| kernel Security Update (ALAS-2022-1761) kernel-livepatch-4.14.268-205.500-1.0-0.amzn2.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234