CVE - CVE-2021-23133

CVE-ID
CVE-2021-23133	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
A race condition in Linux kernel SCTP sockets (net/sctp/socket.c) before 5.12-rc8 can lead to kernel privilege escalation from the context of a network service or an unprivileged process. If sctp_destroy_sock is called without sock_net(sk)->sctp.addr_wq_lock then an element is removed from the auto_asconf_splist list without any proper locking. This can be exploited by an attacker with network service privileges to escalate to root or from the context of an unprivileged user directly if a BPF_CGROUP_INET_SOCK_CREATE is attached which denies creation of some SCTP socket.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
CONFIRM:https://security.netapp.com/advisory/ntap-20210611-0008/ FEDORA:FEDORA-2021-8cd093f639 URL:https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PAEQ3H6HKNO6KUCGRZVYSFSAGEUX23JL/ FEDORA:FEDORA-2021-a963f04012 URL:https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XZASHZVCOFJ4VU2I3BN5W5EPHWJQ7QWX/ FEDORA:FEDORA-2021-e6b4847979 URL:https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CUX2CA63453G34C6KYVBLJXJXEARZI2X/ MISC:https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=b166a20b07382b8bc1dcee2a448715c9c2c81b5b URL:https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=b166a20b07382b8bc1dcee2a448715c9c2c81b5b MISC:https://www.openwall.com/lists/oss-security/2021/04/18/2 URL:https://www.openwall.com/lists/oss-security/2021/04/18/2 MLIST:[debian-lts-announce] 20210623 [SECURITY] [DLA 2689-1] linux security update URL:https://lists.debian.org/debian-lts-announce/2021/06/msg00020.html MLIST:[debian-lts-announce] 20210623 [SECURITY] [DLA 2690-1] linux-4.19 security update URL:https://lists.debian.org/debian-lts-announce/2021/06/msg00019.html MLIST:[oss-security] 20210510 Re: CVE-2021-23133: Linux kernel: race condition in sctp sockets URL:http://www.openwall.com/lists/oss-security/2021/05/10/1 MLIST:[oss-security] 20210510 Re: CVE-2021-23133: Linux kernel: race condition in sctp sockets URL:http://www.openwall.com/lists/oss-security/2021/05/10/2 MLIST:[oss-security] 20210510 Re: CVE-2021-23133: Linux kernel: race condition in sctp sockets URL:http://www.openwall.com/lists/oss-security/2021/05/10/3 MLIST:[oss-security] 20210510 Re: CVE-2021-23133: Linux kernel: race condition in sctp sockets URL:http://www.openwall.com/lists/oss-security/2021/05/10/4
Assigning CNA
Palo Alto Networks
Date Record Created
20210106	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20210106)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)