CVE-2021-47491

high

Published 2024-08-08 · Modified 2024-08-08

CVSS v3

—

VIR risk

8.0

Description

In the Linux kernel, the following vulnerability has been resolved: mm: khugepaged: skip huge page collapse for special files The read-only THP for filesystems will collapse THP for files opened readonly and mapped with VM_EXEC. The intended usecase is to avoid TLB misses for large text segments. But it doesn't restrict the file types so a THP could be collapsed for a non-regular file, for example, block device, if it is opened readonly and mapped with EXEC permission. This may cause bugs, like [1] and [2]. This is definitely not the intended usecase, so just collapse THP for regular files in order to close the attack surface. [shy828301@gmail.com: fix vm_file check [3]]

Predictions

Exploit likelihood

20%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.

OS impact

OS	Version	Status	Fixed in
rocky	8	fixed
sles		affected
debian	bookworm	fixed	`5.15.3-1`
debian	bullseye	fixed	`5.10.84-1`
debian	forky	fixed	`5.15.3-1`
debian	sid	fixed	`5.15.3-1`
debian	trixie	fixed	`5.15.3-1`
almalinux	8	fixed	`kernel-rt-debug-4.18.0-553.16.1.rt7.357.el8_10.x86_64.rpm`

References

💬 Discuss CVE-2021-47491 on VIR Community →

Community-verified mitigations for this CVE will appear above when contributors publish them.

Verify integrity in audit chain (admin only). AS-IS.