CVE-2021-4083 vulnerability in Linux and Other Products
Published on January 18, 2022

A read-after-free memory flaw was found in the Linux kernel's garbage collection for Unix domain socket file handlers in the way users call close() and fget() simultaneously and can potentially trigger a race condition. This flaw allows a local user to crash the system or escalate their privileges on the system. This flaw affects Linux kernel versions prior to 5.16-rc4.

Vendor Advisory NVD

Weakness Type

What is a Dangling pointer Vulnerability?

Referencing memory after it has been freed can cause a program to crash, use unexpected values, or execute code.

CVE-2021-4083 has been classified to as a Dangling pointer vulnerability or weakness.

Products Associated with CVE-2021-4083

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2021-4083 are published in these products:

Linux Kernel

Canonical Ubuntu Linux

Debian Linux

NetApp Hci Management Node

NetApp Solidfire

Oracle Communications Cloud Native Core Binding Support Function

Oracle Communications Cloud Native Core Policy

Oracle Communications Cloud Native Core Network Exposure Function

Exploit Probability

EPSS

0.01%

Percentile

1.75%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2021-4083 vulnerability in Linux and Other ProductsPublished on January 18, 2022

Weakness Type

What is a Dangling pointer Vulnerability?

Products Associated with CVE-2021-4083

Exploit Probability

CVE-2021-4083 vulnerability in Linux and Other Products
Published on January 18, 2022