CVE-2021-3759 log

Source
Severity Low
Remote No
Type Denial of service
Description
A memory overflow was found in the Linux kernel before 5.15, in the ipc functionality of the memcg subsystem in the way user calls semget for many times creating semaphores. A local user could use this flaw to starve the resources causing denial of service.
Group Package Affected Fixed Severity Status Ticket
AVG-1741 linux-lts 5.10.85-1 Medium Vulnerable
AVG-2524 linux-hardened 5.14.21.hardened1-1 5.15.5.hardened1-1 Medium Fixed
AVG-2523 linux-zen 5.14.16.zen1-1 5.15.zen1-1 Low Fixed
AVG-2522 linux 5.14.16.arch1-1 5.15.arch1-1 Low Fixed
References
https://bugzilla.redhat.com/show_bug.cgi?id=1999675
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?h=v5.15&id=18319498fdd4cdf8c1c2c48cd432863b1f915d6f