Severity
High
Analysis Summary
CVE-2021-4002
Linux Kernel could allow a local authenticated attacker to bypass security restrictions, caused by a flaw when running mmap() using the MAP_HUGETLB or shmget() with SHM_HUGETLB. By sending a specially-crafted request, an attacker could exploit this vulnerability to obtain or change data that resides on hugetlbfs.
Impact
- Security Bypass
Affected Vendors
- Linux
Affected Products
- Linux Kernel 3.6
Remediation
Refer to Linux Security Advisory for patch, upgrade, or suggested workaround information.