CVE-2021-3669

EPSS 0.01%
Veröffentlicht 26.08.2022 16:15:09
Zuletzt bearbeitet 21.11.2024 06:22:06
Quelle secalert@redhat.com
Teams Watchlist Login
Unerledigt Login

A flaw was found in the Linux kernel. Measuring usage of the shared memory does not scale with large shared memory segment counts which could lead to resource exhaustion and DoS.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 2 Referenzen 7

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Linux ≫ Linux Kernel

Ibm ≫ Spectrum Copy Data Management Version >= 2.2.0.0 <= 2.2.15.0

Linux ≫ Linux Kernel Version-

Ibm ≫ Spectrum Protect Plus Version >= 10.1.0 <= 10.1.10.2

Linux ≫ Linux Kernel Version-

Debian ≫ Debian Linux Version10.0

Debian ≫ Debian Linux Version11.0

Fedoraproject ≫ Fedora Version34

Redhat ≫ Build Of Quarkus Version >= 2.0 < 2.7

Redhat ≫ Developer Tools Version1.0

Redhat ≫ Enterprise Linux Version6.0

Redhat ≫ Enterprise Linux Version7.0

Redhat ≫ Enterprise Linux Version8.0

Redhat ≫ Enterprise Linux Aus Version8.6

Redhat ≫ Enterprise Linux For Ibm Z Systems Version8.0

Redhat ≫ Enterprise Linux For Ibm Z Systems Eus Version8.6

Redhat ≫ Enterprise Linux For Power Little Endian Version8.0

Redhat ≫ Enterprise Linux For Power Little Endian Eus Version8.6

Redhat ≫ Enterprise Linux For Real Time Version8

Redhat ≫ Enterprise Linux For Real Time For Nfv Version8

Redhat ≫ Enterprise Linux For Real Time For Nfv Tus Version8.6

Redhat ≫ Enterprise Linux For Real Time Tus Version8.6

Redhat ≫ Enterprise Linux Server Aus Version8.6

Redhat ≫ Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions Version8.6

Redhat ≫ Enterprise Linux Server Tus Version8.6

Redhat ≫ Codeready Linux Builder Version-

   Redhat ≫ Enterprise Linux Version8.0
   Redhat ≫ Enterprise Linux Eus Version8.6
   Redhat ≫ Enterprise Linux For Power Little Endian Version8.0
   Redhat ≫ Enterprise Linux For Power Little Endian Eus Version8.6

Redhat ≫ Openshift Container Platform Version4.6

Redhat ≫ Enterprise Linux Version8.0

Redhat ≫ Openshift Container Platform Version4.7

Redhat ≫ Enterprise Linux Version8.0

Redhat ≫ Openshift Container Platform Version4.9

Redhat ≫ Enterprise Linux Version8.0

Redhat ≫ Virtualization Host Version4.0

Redhat ≫ Enterprise Linux Version8.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.01%	0.01

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-400 Uncontrolled Resource Consumption

The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

CWE-770 Allocation of Resources Without Limits or Throttling

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any restrictions on the size or number of resources that can be allocated, in violation of the intended security policy for that actor.

https://access.redhat.com/security/cve/CVE-2021-3669

Third Party Advisory

Issue Tracking

https://bugzilla.redhat.com/show_bug.cgi?id=1980619

Third Party Advisory

Issue Tracking

https://bugzilla.redhat.com/show_bug.cgi?id=1986473

Issue Tracking

Permissions Required

https://security-tracker.debian.org/tracker/CVE-2021-3669

Third Party Advisory

Issue Tracking

https://nvd.nist.gov/vuln/detail/CVE-2021-3669

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-3669

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-3669

EUVD