Vulnerability CVE-2021-22543: Information

Description

An issue was discovered in Linux: KVM through Improper handling of VM_IO|VM_PFNMAP vmas in KVM can bypass RO checks and can lead to pages being freed while still accessible by the VMM and guest. This allows users with the ability to start and control a VM to read/write random pages of memory and can result in local privilege escalation.

Severity: HIGH (7.8) Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

URL: https://nvd.nist.gov/vuln/detail/CVE-2021-22543
Published: May 26, 2021
Modified: Nov. 9, 2023
Error type identifier: CWE-119

Fixed packages

Package name
Branch
Fixed in version
Version from repository
Errata ID
Task #
State
kernel-image-std-debugsisyphus5.10.54-alt16.1.91-alt1ALT-PU-2021-2370-1281272Fixed
kernel-image-std-defsisyphus5.10.47-alt16.1.91-alt1ALT-PU-2021-2102-1276516Fixed
kernel-image-std-defp105.10.47-alt15.10.216-alt1ALT-PU-2021-2102-1276516Fixed
kernel-image-std-defp95.4.129-alt15.4.275-alt1ALT-PU-2021-2207-1276512Fixed
kernel-image-std-defp84.9.301-alt0.M80P.14.9.337-alt0.M80P.1ALT-PU-2022-1308-1295227Fixed
kernel-image-std-defc9f25.10.47-alt0.c9f5.10.214-alt0.c9f.2ALT-PU-2021-2221-1276518Fixed
kernel-image-un-defsisyphus5.12.14-alt16.6.31-alt1ALT-PU-2021-2103-1276520Fixed
kernel-image-un-defsisyphus_riscv645.19.16-alt2.rv646.6.29-alt1.0.portALT-PU-2022-6777-1-Fixed
kernel-image-un-defp105.12.14-alt16.1.85-alt1ALT-PU-2021-2103-1276520Fixed
kernel-image-un-defp95.10.47-alt15.10.216-alt2ALT-PU-2021-2201-1276519Fixed
kernel-image-un-defp84.19.205-alt0.M80P.14.19.310-alt0.M80P.1ALT-PU-2021-2698-1283971Fixed
kernel-image-un-defc10f15.12.14-alt16.1.85-alt0.c10f.1ALT-PU-2021-2103-1276520Fixed

References to Advisories, Solutions, and Tools

Hyperlink
Resource
https://github.com/google/security-research/security/advisories/GHSA-7wq5-phmq-m584
  • Exploit
  • Third Party Advisory
[oss-security] 20210626 Re: CVE-2021-22543 - /dev/kvm LPE
  • Mailing List
https://security.netapp.com/advisory/ntap-20210708-0002/
  • Third Party Advisory
[debian-lts-announce] 20211015 [SECURITY] [DLA 2785-1] linux-4.19 security update
  • Mailing List
  • Third Party Advisory
[debian-lts-announce] 20211216 [SECURITY] [DLA 2843-1] linux security update
  • Mailing List
  • Third Party Advisory
FEDORA-2021-fe826f202e
    FEDORA-2021-95f2f1cfc7

        1. Configuration 1

          cpe:2.3:o:linux:linux_kernel:2021-05-18:*:*:*:*:*:*:*

          Configuration 2

          cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*
          cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*

          Configuration 3

          cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

          Configuration 4

          cpe:2.3:o:netapp:h410c_firmware:-:*:*:*:*:*:*:*
          Running on/with:
          cpe:2.3:h:netapp:h410c:-:*:*:*:*:*:*:*

          Configuration 5

          cpe:2.3:o:netapp:h300s_firmware:-:*:*:*:*:*:*:*
          Running on/with:
          cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:*

          Configuration 6

          cpe:2.3:o:netapp:h500s_firmware:-:*:*:*:*:*:*:*
          Running on/with:
          cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:*

          Configuration 7

          cpe:2.3:o:netapp:h700s_firmware:-:*:*:*:*:*:*:*
          Running on/with:
          cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:*

          Configuration 8

          cpe:2.3:o:netapp:h300e_firmware:-:*:*:*:*:*:*:*
          Running on/with:
          cpe:2.3:h:netapp:h300e:-:*:*:*:*:*:*:*

          Configuration 9

          cpe:2.3:o:netapp:h500e_firmware:-:*:*:*:*:*:*:*
          Running on/with:
          cpe:2.3:h:netapp:h500e:-:*:*:*:*:*:*:*

          Configuration 10

          cpe:2.3:o:netapp:h700e_firmware:-:*:*:*:*:*:*:*
          Running on/with:
          cpe:2.3:h:netapp:h700e:-:*:*:*:*:*:*:*

          Configuration 11

          cpe:2.3:o:netapp:h410s_firmware:-:*:*:*:*:*:*:*
          Running on/with:
          cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:*

          Configuration 12

          cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*
          cpe:2.3:o:netapp:solidfire_baseboard_management_controller_firmware:-:*:*:*:*:*:*:*
      VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
      Version: v24.5.1
      Back to top