A memory overflow vulnerability was found in the Linux kernel’s ipc functionality of the memcg subsystem, in the way a user calls the semget function multiple times, creating semaphores. This flaw allows a local user to starve the resources, causing a denial of service. The highest threat from this vulnerability is to system availability.
References
Link | Resource |
---|---|
https://access.redhat.com/security/cve/CVE-2021-3759 | Third Party Advisory |
https://bugzilla.redhat.com/show_bug.cgi?id=1999675 | Issue Tracking Third Party Advisory |
https://lists.debian.org/debian-lts-announce/2022/12/msg00031.html | Mailing List Third Party Advisory |
https://lore.kernel.org/linux-mm/1626333284-1404-1-git-send-email-nglaive%40gmail.com/ |
Configurations
History
10 Jul 2023, 19:02
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-770 |
01 Mar 2023, 01:23
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:* | |
References | (MLIST) https://lists.debian.org/debian-lts-announce/2022/12/msg00031.html - Mailing List, Third Party Advisory |
22 Dec 2022, 16:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
25 Aug 2022, 12:52
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.5 |
CPE | cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* | |
CWE | CWE-400 | |
References | (MISC) https://bugzilla.redhat.com/show_bug.cgi?id=1999675 - Issue Tracking, Third Party Advisory | |
References | (MISC) https://lore.kernel.org/linux-mm/1626333284-1404-1-git-send-email-nglaive@gmail.com/ - Exploit, Mailing List, Vendor Advisory | |
References | (MISC) https://access.redhat.com/security/cve/CVE-2021-3759 - Third Party Advisory |
23 Aug 2022, 17:04
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-08-23 16:15
Updated : 2024-02-04 22:51
NVD link : CVE-2021-3759
Mitre link : CVE-2021-3759
CVE.ORG link : CVE-2021-3759
JSON object : View
Products Affected
debian
- debian_linux
linux
- linux_kernel