linux linux-kernel CVE-2021-23133 vulnerability in Linux and Other Products
Published on April 22, 2021

Linux Kernel sctp_destroy_sock race condition

product logo product logo product logo product logo product logo product logo
A race condition in Linux kernel SCTP sockets (net/sctp/socket.c) before 5.12-rc8 can lead to kernel privilege escalation from the context of a network service or an unprivileged process. If sctp_destroy_sock is called without sock_net(sk)->sctp.addr_wq_lock then an element is removed from the auto_asconf_splist list without any proper locking. This can be exploited by an attacker with network service privileges to escalate to root or from the context of an unprivileged user directly if a BPF_CGROUP_INET_SOCK_CREATE is attached which denies creation of some SCTP socket.

Vendor Advisory Vendor Advisory Vendor Advisory NVD

Vulnerability Analysis

CVE-2021-23133 can be exploited with local system access, and requires user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to be very high.

Attack Vector:
LOCAL
Attack Complexity:
LOW
Privileges Required:
HIGH
User Interaction:
NONE
Scope:
UNCHANGED
Confidentiality Impact:
HIGH
Integrity Impact:
HIGH
Availability Impact:
HIGH

Weakness Type

What is a Race Condition Vulnerability?

The program contains a code sequence that can run concurrently with other code, and the code sequence requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence that is operating concurrently.

CVE-2021-23133 has been classified to as a Race Condition vulnerability or weakness.


Products Associated with CVE-2021-23133

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2021-23133 are published in these products:

Linux Kernel
 
Fedora Project Fedora
 
Canonical Ubuntu Linux
 
Debian Linux
 
NetApp Cloud Backup
 
NetApp Solidfire Hci Management Node
 
Broadcom Brocade Fabric Operating System
 

Affected Versions

Linux Kernel:

Exploit Probability

EPSS
0.09%
Percentile
26.13%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.