Main Vulnerability Database Vulnerabilities #VU92753

Observable discrepancy in Linux kernel - CVE-2021-38209

Published: August 8, 2021 / Updated: August 13, 2021

Vulnerability identifier: #VU92753

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2021-38209

CWE-ID: CWE-203

Exploitation vector: Local access

Exploit availability: No public exploit available

Vendor: Linux Foundation

Affected software:
Linux kernel

Detailed vulnerability description

The vulnerability allows a local user to gain access to sensitive information.

net/netfilter/nf_conntrack_standalone.c in the Linux kernel before 5.12.2 allows observation of changes in any net namespace because these changes are leaked into all other net namespaces. This is related to the NF_SYSCTL_CT_MAX, NF_SYSCTL_CT_EXPECT_MAX, and NF_SYSCTL_CT_BUCKETS sysctls.

How to mitigate CVE-2021-38209

Install update from vendor's repository.

Sources

https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.12.2
https://github.com/torvalds/linux/commit/2671fa4dc0109d3fb581bc3078fdf17b5d9080f6

Observable discrepancy in Linux kernel - CVE-2021-38209

Detailed vulnerability description

How to mitigate CVE-2021-38209

Sources

Please verify you're human