CVE-2021-20265
Summary
| CVE | CVE-2021-20265 |
|---|
| State | PUBLIC |
|---|
| Assigner | [email protected] |
|---|
| Source Priority | CVE Program / NVD first with legacy fallback |
|---|
| Published | 2021-03-10 16:15:00 UTC |
|---|
| Updated | 2022-08-05 17:52:00 UTC |
|---|
| Description | A flaw was found in the way memory resources were freed in the unix_stream_recvmsg function in the Linux kernel when a signal was pending. This flaw allows an unprivileged local user to crash the system by exhausting available memory. The highest threat from this vulnerability is to system availability. |
|---|
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|
| Oracle Critical Patch Update Advisory - October 2021 |
MISC |
www.oracle.com |
|
| 1908827 – (CVE-2021-20265) CVE-2021-20265 kernel: increase slab leak leads to DoS |
MISC |
bugzilla.redhat.com |
Issue Tracking, Patch, Third Party Advisory |
| kernel/git/torvalds/linux.git - Linux kernel source tree |
MISC |
git.kernel.org |
Patch, Vendor Advisory |
| CVE Program record |
CVE.ORG |
www.cve.org |
canonical |
| NVD vulnerability detail |
NVD |
nvd.nist.gov |
canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 159173 Oracle Enterprise Linux Security Update for kernel (ELSA-2021-9212)
- 179642 Debian Security Update for linux (CVE-2021-20265)
- 239151 Red Hat Update for kernel (RHSA-2021:0856)
- 239237 Red Hat Update for kernel (RHSA-2021:1288)
- 257070 CentOS Security Update for kernel (CESA-2021:0856)
- 670463 EulerOS Security Update for kernel (EulerOS-SA-2021-2221)
- 670634 EulerOS Security Update for kernel (EulerOS-SA-2021-2392)
- 751451 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2021:3935-1)
