Vulnerability Details CVE-2021-3492
Shiftfs, an out-of-tree stacking file system included in Ubuntu Linux kernels, did not properly handle faults occurring during copy_from_user() correctly. These could lead to either a double-free situation or memory not being freed at all. An attacker could use this to cause a denial of service (kernel memory exhaustion) or gain privileges via executing arbitrary code. AKA ZDI-CAN-13562.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.234
EPSS Ranking 95.7%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 7.2
References
- http://packetstormsecurity.com/files/162614/Kernel-Live-Patch-Security-Notice-LSN-0077-1.html
- https://git.launchpad.net/~ubuntu-kernel/ubuntu/+source/linux/+git/focal/commit/?id=25c891a949bf918b59cbc6e4932015ba4c35c333
- https://git.launchpad.net/~ubuntu-kernel/ubuntu/+source/linux/+git/focal/commit/?id=8fee52ab9da87d82bc6de9ebb3480fff9b4d53e6
- https://ubuntu.com/security/notices/USN-4917-1
- https://www.openwall.com/lists/oss-security/2021/04/16/2
- https://www.zerodayinitiative.com/advisories/ZDI-21-422/
- http://packetstormsecurity.com/files/162614/Kernel-Live-Patch-Security-Notice-LSN-0077-1.html
- https://git.launchpad.net/~ubuntu-kernel/ubuntu/+source/linux/+git/focal/commit/?id=25c891a949bf918b59cbc6e4932015ba4c35c333
- https://git.launchpad.net/~ubuntu-kernel/ubuntu/+source/linux/+git/focal/commit/?id=8fee52ab9da87d82bc6de9ebb3480fff9b4d53e6
- https://ubuntu.com/security/notices/USN-4917-1
- https://www.openwall.com/lists/oss-security/2021/04/16/2
- https://www.zerodayinitiative.com/advisories/ZDI-21-422/
Products affected by CVE-2021-3492
-
cpe:2.3:o:canonical:ubuntu_linux:10.04
-
cpe:2.3:o:canonical:ubuntu_linux:10.04.1
-
cpe:2.3:o:canonical:ubuntu_linux:10.04.2
-
cpe:2.3:o:canonical:ubuntu_linux:10.04.3
-
cpe:2.3:o:canonical:ubuntu_linux:10.04.4
-
cpe:2.3:o:canonical:ubuntu_linux:12.04
-
cpe:2.3:o:canonical:ubuntu_linux:12.04.1
-
cpe:2.3:o:canonical:ubuntu_linux:12.04.2
-
cpe:2.3:o:canonical:ubuntu_linux:12.04.3
-
cpe:2.3:o:canonical:ubuntu_linux:12.04.4
-
cpe:2.3:o:canonical:ubuntu_linux:12.04.5
-
cpe:2.3:o:canonical:ubuntu_linux:14.04
-
cpe:2.3:o:canonical:ubuntu_linux:14.04.1
-
cpe:2.3:o:canonical:ubuntu_linux:14.04.2
-
cpe:2.3:o:canonical:ubuntu_linux:14.04.3
-
cpe:2.3:o:canonical:ubuntu_linux:14.04.4
-
cpe:2.3:o:canonical:ubuntu_linux:14.04.5
-
cpe:2.3:o:canonical:ubuntu_linux:14.04.6
-
cpe:2.3:o:canonical:ubuntu_linux:16.04
-
cpe:2.3:o:canonical:ubuntu_linux:16.04.1
-
cpe:2.3:o:canonical:ubuntu_linux:16.04.2
-
cpe:2.3:o:canonical:ubuntu_linux:16.04.3
-
cpe:2.3:o:canonical:ubuntu_linux:16.04.4
-
cpe:2.3:o:canonical:ubuntu_linux:16.04.5
-
cpe:2.3:o:canonical:ubuntu_linux:16.04.6
-
cpe:2.3:o:canonical:ubuntu_linux:17.10
-
cpe:2.3:o:canonical:ubuntu_linux:18.04.1
-
cpe:2.3:o:canonical:ubuntu_linux:18.04.2
-
cpe:2.3:o:canonical:ubuntu_linux:18.04.3
-
cpe:2.3:o:canonical:ubuntu_linux:18.04.4
-
cpe:2.3:o:canonical:ubuntu_linux:18.04.5
-
cpe:2.3:o:canonical:ubuntu_linux:18.04.6
-
cpe:2.3:o:canonical:ubuntu_linux:19.04
-
cpe:2.3:o:canonical:ubuntu_linux:20.04
-
cpe:2.3:o:canonical:ubuntu_linux:6.06
-
cpe:2.3:o:canonical:ubuntu_linux:6.06.1
-
cpe:2.3:o:canonical:ubuntu_linux:6.06.2
-
cpe:2.3:o:canonical:ubuntu_linux:8.04
-
cpe:2.3:o:canonical:ubuntu_linux:8.04.1
-
cpe:2.3:o:canonical:ubuntu_linux:8.04.2
-
cpe:2.3:o:canonical:ubuntu_linux:8.04.3
-
cpe:2.3:o:canonical:ubuntu_linux:8.04.4