CVE-2021-47461

Published: May 22, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: userfaultfd: fix a race between writeprotect and exit_mmap() A race is possible when a process exits, its VMAs are removed by exit_mmap() and at the same time userfaultfd_writeprotect() is called. The race was detected by KASAN on a development kernel, but it appears to be possible on vanilla kernels as well. Use mmget_not_zero() to prevent the race as done in other userfaultfd operations.

Vendor	Product	Versions
Linux	Linux	affected `63b2d4174c4ad1f40b48d7138e71bcb564c1fe03 - < 3cda4bfffd4f755645577aaa9e96a606657b4525` affected `63b2d4174c4ad1f40b48d7138e71bcb564c1fe03 - < 149958ecd0627a9f1e9c678c25c665400054cd6a` affected `63b2d4174c4ad1f40b48d7138e71bcb564c1fe03 - < cb185d5f1ebf900f4ae3bf84cee212e6dd035aca`
Linux	Linux	affected `5.7` unaffected `0 - < 5.7` unaffected `5.10.76 - <= 5.10.` unaffected `5.14.15 - <= 5.14.` unaffected `5.15 - <= *`

References

https://git.kernel.org/stable/c/3cda4bfffd4f755645577aaa9e96a606657b4525

https://git.kernel.org/stable/c/149958ecd0627a9f1e9c678c25c665400054cd6a

https://git.kernel.org/stable/c/cb185d5f1ebf900f4ae3bf84cee212e6dd035aca

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-47461

Description

Affected Products

References