Memory Overflow Vulnerability in Linux Kernel's ipc Functionality of memcg Subsystem Allows Denial of Service

Memory Overflow Vulnerability in Linux Kernel's ipc Functionality of memcg Subsystem Allows Denial of Service

CVE-2021-3759 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

A memory overflow vulnerability was found in the Linux kernel’s ipc functionality of the memcg subsystem, in the way a user calls the semget function multiple times, creating semaphores. This flaw allows a local user to starve the resources, causing a denial of service. The highest threat from this vulnerability is to system availability.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.