CVE-2021-3669

Published Aug 26, 2022
Last updated 5 months ago
CVSS medium 5.5
Overview

Description: A flaw was found in the Linux kernel. Measuring usage of the shared memory does not scale with large shared memory segment counts which could lead to resource exhaustion and DoS.
Source: secalert@redhat.com
NVD status: Modified
Risk scores

CVSS 3.1

Type: Primary
Base score: 5.5
Impact score: 3.6
Exploitability score: 1.8
Vector string: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Severity: MEDIUM
Weaknesses

secalert@redhat.com: CWE-400
nvd@nist.gov: CWE-770
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "155AD4FB-E527-4103-BCEF-801B653DEA37"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:ibm:spectrum_copy_data_management:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4360D515-B9E7-408B-9EA7-FBC3D6A2A1E8",
            "versionEndIncluding": "2.2.15.0",
            "versionStartIncluding": "2.2.0.0"
          },
          {
            "criteria": "cpe:2.3:a:ibm:spectrum_protect_plus:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F83EF5CD-6BEB-457A-B892-506C4052572A",
            "versionEndIncluding": "10.1.10.2",
            "versionStartIncluding": "10.1.0"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"
          },
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FA6FEEC2-9F11-4643-8827-749718254FED"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A930E247-0B43-43CB-98FF-6CE7B8189835"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:redhat:build_of_quarkus:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E329994B-6702-4599-91DE-FD72714880B4",
            "versionEndExcluding": "2.7",
            "versionStartIncluding": "2.0"
          },
          {
            "criteria": "cpe:2.3:a:redhat:developer_tools:1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "60937D60-6B78-400F-8D30-7FCF328659A1"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2F6AB192-9D7D-4A9A-8995-E53A9DE9EAFC"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "142AD0DD-4CF3-4D74-9442-459CE3347E3A"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F4CFF558-3C47-480D-A2F0-BABF26042943"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_aus:8.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5CA4F12A-5BC5-4D75-8F20-80D8BB2C5BF2"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:8.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "87C21FE1-EA5C-498F-9C6C-D05F91A88217"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:8.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9EF5C4AC-CA69-41E3-AD93-7AC21931374A"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:8.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "47811209-5CE5-4375-8391-B0A7F6A0E420"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:8.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "729C515E-1DD3-466D-A50B-AFE058FFC94A"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_for_real_time:8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CBF9BCF3-187F-410A-96CA-9C47D3ED6924"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_for_real_time_for_nfv:8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E5CB3640-F55B-4127-875A-2F52D873D179"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_for_real_time_for_nfv_tus:8.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6D5DE3C5-B090-4CE7-9AF2-DEB379D7D5FC"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_for_real_time_tus:8.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CCE99A08-D6F7-4937-8154-65062BC88009"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:8.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "76C24D94-834A-4E9D-8F73-624AFA99AAA2"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "871A5C26-DB7B-4870-A5B2-5DD24C90B4A7"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_tus:8.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1272DF03-7674-4BD4-8E64-94004B195448"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:redhat:codeready_linux_builder:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1CD81C46-328B-412D-AF4E-68A2AD2F1A73"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F4CFF558-3C47-480D-A2F0-BABF26042943"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_eus:8.6:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "6C3741B8-851F-475D-B428-523F4F722350"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:8.0:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "47811209-5CE5-4375-8391-B0A7F6A0E420"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:8.6:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "729C515E-1DD3-466D-A50B-AFE058FFC94A"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:redhat:openshift_container_platform:4.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6B62E762-2878-455A-93C9-A5DB430D7BB5"
          },
          {
            "criteria": "cpe:2.3:a:redhat:openshift_container_platform:4.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "14CF53D2-B585-4EA5-8F18-21BC9ECBB4B6"
          },
          {
            "criteria": "cpe:2.3:a:redhat:openshift_container_platform:4.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "81609549-25CE-4C8A-9DE3-170D23704208"
          },
          {
            "criteria": "cpe:2.3:a:redhat:virtualization_host:4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BB28F9AF-3D06-4532-B397-96D7E4792503"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F4CFF558-3C47-480D-A2F0-BABF26042943"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]
Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

References
