The problem was discovered by Mauricio Herrera of Red Hat. An attacker needed to execute a specially crafted application to exploit this flaw.
There were no reports of attacks exploiting this flaw. However, the XFS project released a new version with this flaw fixed.
Another vulnerability was found in the way the KVM virtualization implementation in the Linux kernel handled memory address validation. An attacker could use this flaw to access data previously only available to the kernel.
Red Hat Enterprise Linux 7 and Red Hat Enterprise Linux 6 were not vulnerable to this issue. Linux distributions that were updated to fix this issue are Red Hat Enterprise Linux 7 and Red Hat Enterprise Linux 6.
Red Hat Enterprise Linux 7 and Red Hat Enterprise Linux 6 are not vulnerable to another flaw found in the way KVM virtualization implementation in the Linux kernel handled user-mode guest-mode mapping. A local attacker could use this flaw to host malicious guest machines. Red Hat Enterprise Linux 7 and Red Hat Enterprise Linux 6 were not vulnerable to a flaw in the way KVM virtualization implementation in the Linux kernel handled user-mode guest-mode mapping. A local attacker could use this flaw to host malicious guest machines.
Red Hat Enterprise Linux 7 and Red Hat Enterprise Linux 6 were not vulnerable to a flaw in the way KVM virtualization implementation in the Linux kernel handled user-mode guest-mode mapping
What is Red Hat Enterprise Linux?
Red Hat Enterprise Linux is a popular open source platform that provides stability, flexibility, and scalability.
Red Hat Enterprise Linux 7, 2.6 and 2.4 are not vulnerable to this issue
The vulnerability was discovered by David Howells of Red Hat. An attacker needed to execute a specially crafted application to exploit this flaw.
The Linux kernel was not vulnerable to this issue.
Red Hat Enterprise Linux 7, 2.6 and 2.4 are not vulnerable to another flaw found in the way KVM virtualization implementation in the Linux kernel handled user-mode guest-mode mapping. A local attacker could use this flaw to host malicious guest machines.
Red Hat Enterprise Linux 7, 2.6 and 2.4 are not vulnerable to a flaw in the way KVM virtualization implementation in the Linux kernel handled user-mode guest-mode mapping
Overview of Red Hat Enterprise Linux 7 and Red Hat Enterprise Linux 6
Red Hat Enterprise Linux 7 and Red Hat Enterprise Linux 6 are the latest versions of this popular enterprise operating system. These operating systems have the latest security updates and patches, which makes them a safe choice for businesses.
Timeline
Published on: 08/24/2022 16:15:00 UTC
Last modified on: 08/29/2022 13:39:00 UTC
References
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=983d8e60f50806f90534cc5373d0ce867e5aaf79
- https://access.redhat.com/security/cve/CVE-2021-4155
- https://www.openwall.com/lists/oss-security/2022/01/10/1
- https://security-tracker.debian.org/tracker/CVE-2021-4155
- https://bugzilla.redhat.com/show_bug.cgi?id=2034813
- https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-4155