CVE-2021-47461

Description

In the Linux kernel, the following vulnerability has been resolved: userfaultfd: fix a race between writeprotect and exit_mmap() A race is possible when a process exits, its VMAs are removed by exit_mmap() and at the same time userfaultfd_writeprotect() is called. The race was detected by KASAN on a development kernel, but it appears to be possible on vanilla kernels as well. Use mmget_not_zero() to prevent the race as done in other userfaultfd operations.

Predictions

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.

References

• https://errata.rockylinux.org/RXSA-2024:5101
• https://errata.rockylinux.org/RLSA-2024:5102
• https://errata.rockylinux.org/RLSA-2024:5101
• https://www.suse.com/security/cve/CVE-2021-47461.html
• https://security-tracker.debian.org/tracker/CVE-2021-47461
• https://access.redhat.com/errata/RHSA-2024:5102
• https://bugzilla.redhat.com/2263879
• https://bugzilla.redhat.com/2265645
• https://bugzilla.redhat.com/2265797
• https://bugzilla.redhat.com/2266341
• https://bugzilla.redhat.com/2266347
• https://bugzilla.redhat.com/2266497
• https://bugzilla.redhat.com/2267787
• https://bugzilla.redhat.com/2268118
• https://bugzilla.redhat.com/2269070
• https://bugzilla.redhat.com/2269211
• https://bugzilla.redhat.com/2270084
• https://bugzilla.redhat.com/2270100
• https://bugzilla.redhat.com/2271686
• https://bugzilla.redhat.com/2271688
• https://bugzilla.redhat.com/2272782
• https://bugzilla.redhat.com/2272795
• https://bugzilla.redhat.com/2273109
• https://bugzilla.redhat.com/2273174
• https://bugzilla.redhat.com/2273236

💬 Discuss CVE-2021-47461 on VIR Community →

Community-verified mitigations for this CVE will appear above when contributors publish them.