Back to bug 1999675
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Alex | 2021-08-31 14:50:19 UTC | Doc Text | A flaw memory overflow in the Linux kernel ipc functionality of the memcg subsystem was found in the way user calls semget for many times creating semaphores. A local user could use this flaw to starve the resources causing denial of service. | |
| Alex | 2021-08-31 14:55:01 UTC | Comment | 2 | updated |
| Alex | 2021-08-31 15:36:31 UTC | Depends On | 1999706, 1999707, 1999705 | |
| Alex | 2021-08-31 15:41:48 UTC | Comment | 3 | updated |
| Dhananjay Arunesh | 2021-09-01 04:49:47 UTC | Alias | CVE-2021-3759 | |
| Summary | kernel: unaccounted ipc objects in Linux kernel lead to breaking memcg limits and DoS attacks | CVE-2021-3759 kernel: unaccounted ipc objects in Linux kernel lead to breaking memcg limits and DoS attacks | ||
| RaTasha Tillery-Smith | 2021-09-01 18:59:25 UTC | Doc Text | A flaw memory overflow in the Linux kernel ipc functionality of the memcg subsystem was found in the way user calls semget for many times creating semaphores. A local user could use this flaw to starve the resources causing denial of service. | A memory overflow vulnerability was found in the Linux kernel’s ipc functionality of the memcg subsystem, in the way a user calls the semget function multiple times, creating semaphores. This flaw allows a local user to starve the resources, causing a denial of service. |
| RaTasha Tillery-Smith | 2021-09-01 19:02:28 UTC | Doc Text | A memory overflow vulnerability was found in the Linux kernel’s ipc functionality of the memcg subsystem, in the way a user calls the semget function multiple times, creating semaphores. This flaw allows a local user to starve the resources, causing a denial of service. | A memory overflow vulnerability was found in the Linux kernel’s ipc functionality of the memcg subsystem, in the way a user calls the semget function multiple times, creating semaphores. This flaw allows a local user to starve the resources, causing a denial of service. The highest threat from this vulnerability is to system availability. |
| Rohit Keshri | 2021-09-13 18:23:58 UTC | Fixed In Version | kernel 5.15 rc1 | |
| Red Hat Bugzilla | 2021-09-15 05:47:22 UTC | CC | jglisse | |
| Petr Matousek | 2021-09-24 08:30:57 UTC | Fixed In Version | kernel 5.15 rc1 | Linux kernel 5.15-rc1 |
| errata-xmlrpc | 2022-05-10 14:39:34 UTC | Link ID | Red Hat Product Errata RHSA-2022:1975 | |
| errata-xmlrpc | 2022-05-10 14:45:18 UTC | Link ID | Red Hat Product Errata RHSA-2022:1988 | |
| Product Security DevOps Team | 2022-05-11 10:15:34 UTC | Resolution | --- | ERRATA |
| Status | NEW | CLOSED | ||
| Last Closed | 2022-05-11 10:15:34 UTC | |||
| errata-xmlrpc | 2022-05-12 11:26:33 UTC | Link ID | Red Hat Product Errata RHBA-2022:2229 | |
| errata-xmlrpc | 2022-05-18 11:46:19 UTC | Link ID | Red Hat Product Errata RHBA-2022:4630 | |
| errata-xmlrpc | 2022-05-19 05:10:45 UTC | Link ID | Red Hat Product Errata RHBA-2022:4693 | |
| errata-xmlrpc | 2022-06-08 18:39:53 UTC | Link ID | Red Hat Product Errata RHBA-2022:4969 | |
| errata-xmlrpc | 2022-06-16 11:23:06 UTC | Link ID | Red Hat Product Errata RHBA-2022:5088 |
Back to bug 1999675