Use-after-free in Linux kernel trace
| Risk | Low |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | CVE-2021-47375 |
| CWE-ID | CWE-416 |
| Exploitation vector | Local |
| Public exploit | N/A |
| Vulnerable software |
Linux kernel Operating systems & Components / Operating system |
| Vendor | Linux Foundation |
Security Bulletin
This security bulletin contains one low risk vulnerability.
1) Use-after-free
EUVDB-ID: #VU90138
Risk: Low
CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2021-47375
CWE-ID:
CWE-416 - Use After Free
Exploit availability: No
DescriptionThe vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the blk_trace_remove_queue() function in kernel/trace/blktrace.c. A local user can escalate privileges on the system.
MitigationInstall update from vendor's website.
Vulnerable software versionsLinux kernel: 4.4 - 5.15 rc7
CPE2.3- cpe:2.3:o:linux_foundation:linux_kernel:4.4:*:*:*:*:*:*:*
- cpe:2.3:o:linux_foundation:linux_kernel:4.4.0:*:*:*:*:*:*:*
- cpe:2.3:o:linux_foundation:linux_kernel:4.4.0-57:*:*:*:*:*:*:*
- cpe:2.3:o:linux_foundation:linux_kernel:4.4.1:*:*:*:*:*:*:*
- cpe:2.3:o:linux_foundation:linux_kernel:4.4.2:*:*:*:*:*:*:*
- cpe:2.3:o:linux_foundation:linux_kernel:4.4.3:*:*:*:*:*:*:*
- cpe:2.3:o:linux_foundation:linux_kernel:4.4.4:*:*:*:*:*:*:*
- cpe:2.3:o:linux_foundation:linux_kernel:4.4.5:*:*:*:*:*:*:*
- cpe:2.3:o:linux_foundation:linux_kernel:4.4.6:*:*:*:*:*:*:*
- cpe:2.3:o:linux_foundation:linux_kernel:4.4.7:*:*:*:*:*:*:*
https://git.kernel.org/stable/c/488da313edf3abea7f7733efe011c96b23740ab5
https://git.kernel.org/stable/c/dacfd5e4d1142bfb3809aab3634a375f6f373269
https://git.kernel.org/stable/c/d56171d9360c0170c5c5f8f7e2362a2e999eca40
https://git.kernel.org/stable/c/677e362ba807f3aafe6f405c07e0b37244da5222
https://git.kernel.org/stable/c/ebb8d26d93c3ec3c7576c52a8373a2309423c069
https://git.kernel.org/stable/c/3815fe7371d2411ce164281cef40d9fc7b323dee
https://git.kernel.org/stable/c/a5f8e86192612d0183047448d8bbe7918b3f1a26
https://git.kernel.org/stable/c/5afedf670caf30a2b5a52da96eb7eac7dee6a9c9
https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.249
https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.209
https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.286
https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.285
https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.70
https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.14.9
https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15
https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.4.150
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
