Vulnerability CVE-2021-23133: Information

Description

A race condition in Linux kernel SCTP sockets (net/sctp/socket.c) before 5.12-rc8 can lead to kernel privilege escalation from the context of a network service or an unprivileged process. If sctp_destroy_sock is called without sock_net(sk)->sctp.addr_wq_lock then an element is removed from the auto_asconf_splist list without any proper locking. This can be exploited by an attacker with network service privileges to escalate to root or from the context of an unprivileged user directly if a BPF_CGROUP_INET_SOCK_CREATE is attached which denies creation of some SCTP socket.

Severity: HIGH (7.0) Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

URL: https://nvd.nist.gov/vuln/detail/CVE-2021-23133
Published: April 22, 2021
Modified: Nov. 7, 2023
Error type identifier: CWE-362

Fixed packages

Package name
Branch
Fixed in version
Version from repository
Errata ID
Task #
State
kernel-image-mpsisyphus5.12.4-alt16.8.4-alt1ALT-PU-2021-1833-1272140Fixed
kernel-image-mpp105.12.4-alt16.1.19-alt1ALT-PU-2021-1833-1272140Fixed
kernel-image-mpp95.12.16-alt15.12.16-alt1ALT-PU-2021-3481-1279859Fixed
kernel-image-rpi-defsisyphus5.15.25-alt15.15.92-alt2ALT-PU-2022-1419-1296090Fixed
kernel-image-rpi-defp105.15.25-alt15.15.92-alt2ALT-PU-2022-1421-1296181Fixed
kernel-image-rpi-unsisyphus5.12.6-alt16.6.23-alt1ALT-PU-2021-1888-1273055Fixed
kernel-image-rpi-unp105.12.6-alt16.1.77-alt1ALT-PU-2021-1888-1273055Fixed
kernel-image-rpi-unp95.12.6-alt15.12.17-alt1ALT-PU-2021-1896-1273084Fixed
kernel-image-rtsisyphus6.1.28-alt1.rt106.1.83-alt1.rt28ALT-PU-2023-1814-1320645Fixed
kernel-image-std-debugsisyphus5.10.54-alt16.1.87-alt1ALT-PU-2021-2370-1281272Fixed
kernel-image-std-defsisyphus5.10.32-alt16.1.87-alt1ALT-PU-2021-1706-1270544Fixed
kernel-image-std-defp105.10.32-alt15.10.213-alt1ALT-PU-2021-1706-1270544Fixed
kernel-image-std-defp95.4.119-alt15.4.274-alt1ALT-PU-2021-1856-1271835Fixed
kernel-image-std-defp84.9.270-alt0.M80P.14.9.337-alt0.M80P.1ALT-PU-2021-1884-1272597Fixed
kernel-image-std-defc9f25.10.32-alt0.c9f5.10.214-alt0.c9f.2ALT-PU-2021-1739-1270353Fixed
kernel-image-std-defc74.4.277-alt0.M70C.14.4.277-alt0.M70C.1ALT-PU-2021-3033-1281293Fixed
kernel-image-un-defsisyphus5.11.16-alt16.6.28-alt1ALT-PU-2021-1707-1270547Fixed
kernel-image-un-defsisyphus_riscv645.19.16-alt2.rv646.6.28-alt1.0.portALT-PU-2022-6777-1-Fixed
kernel-image-un-defp105.11.16-alt16.1.85-alt1ALT-PU-2021-1707-1270547Fixed
kernel-image-un-defp95.10.32-alt15.10.215-alt1ALT-PU-2021-1720-1270546Fixed
kernel-image-un-defp84.19.189-alt0.M80P.14.19.310-alt0.M80P.1ALT-PU-2021-1749-1270909Fixed
kernel-image-un-defc10f15.11.16-alt16.1.85-alt0.c10f.1ALT-PU-2021-1707-1270547Fixed
kernel-image-un-defc74.9.277-alt0.M70C.14.9.277-alt0.M70C.1ALT-PU-2021-3032-1281292Fixed

References to Advisories, Solutions, and Tools

Hyperlink
Resource
N/A
  • Mailing List
  • Patch
  • Vendor Advisory
N/A
  • Exploit
  • Mailing List
  • Patch
  • Third Party Advisory
[oss-security] 20210510 Re: CVE-2021-23133: Linux kernel: race condition in sctp sockets
  • Mailing List
  • Patch
  • Third Party Advisory
[oss-security] 20210510 Re: CVE-2021-23133: Linux kernel: race condition in sctp sockets
  • Mailing List
  • Patch
  • Third Party Advisory
[oss-security] 20210510 Re: CVE-2021-23133: Linux kernel: race condition in sctp sockets
  • Mailing List
  • Patch
  • Third Party Advisory
[oss-security] 20210510 Re: CVE-2021-23133: Linux kernel: race condition in sctp sockets
  • Mailing List
  • Patch
  • Third Party Advisory
https://security.netapp.com/advisory/ntap-20210611-0008/
  • Third Party Advisory
[debian-lts-announce] 20210623 [SECURITY] [DLA 2689-1] linux security update
  • Mitigation
  • Third Party Advisory
[debian-lts-announce] 20210623 [SECURITY] [DLA 2690-1] linux-4.19 security update
  • Mitigation
  • Third Party Advisory
FEDORA-2021-8cd093f639
    FEDORA-2021-e6b4847979
      FEDORA-2021-a963f04012

          1. Configuration 1

            cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
            Start including
            5.11
            End excliding
            5.11.16
            cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
            Start including
            5.5
            End excliding
            5.10.32
            cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
            Start including
            4.20
            End excliding
            5.4.114
            cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
            Start including
            4.15
            End excliding
            4.19.189
            cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
            Start including
            4.10
            End excliding
            4.14.232

            Configuration 2

            cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*
            cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*
            cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*

            Configuration 3

            cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

            Configuration 4

            cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*
            cpe:2.3:a:netapp:solidfire_\&_hci_management_node:-:*:*:*:*:*:*:*

            Configuration 5

            cpe:2.3:o:broadcom:brocade_fabric_operating_system:-:*:*:*:*:*:*:*

            Configuration 6

            cpe:2.3:o:netapp:h410c_firmware:-:*:*:*:*:*:*:*
            Running on/with:
            cpe:2.3:h:netapp:h410c:-:*:*:*:*:*:*:*

            Configuration 7

            cpe:2.3:o:netapp:h300s_firmware:-:*:*:*:*:*:*:*
            Running on/with:
            cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:*

            Configuration 8

            cpe:2.3:o:netapp:h500s_firmware:-:*:*:*:*:*:*:*
            Running on/with:
            cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:*

            Configuration 9

            cpe:2.3:o:netapp:h700s_firmware:-:*:*:*:*:*:*:*
            Running on/with:
            cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:*

            Configuration 10

            cpe:2.3:o:netapp:h300e_firmware:-:*:*:*:*:*:*:*
            Running on/with:
            cpe:2.3:h:netapp:h300e:-:*:*:*:*:*:*:*

            Configuration 11

            cpe:2.3:o:netapp:h500e_firmware:-:*:*:*:*:*:*:*
            Running on/with:
            cpe:2.3:h:netapp:h500e:-:*:*:*:*:*:*:*

            Configuration 12

            cpe:2.3:o:netapp:h700e_firmware:-:*:*:*:*:*:*:*
            Running on/with:
            cpe:2.3:h:netapp:h700e:-:*:*:*:*:*:*:*

            Configuration 13

            cpe:2.3:o:netapp:h410s_firmware:-:*:*:*:*:*:*:*
            Running on/with:
            cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:*

            Configuration 14

            cpe:2.3:o:netapp:solidfire_baseboard_management_controller_firmware:-:*:*:*:*:*:*:*
            Running on/with:
            cpe:2.3:h:netapp:solidfire_baseboard_management_controller:-:*:*:*:*:*:*:*
        VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
        Version: v24.4.2
        Back to top