CVE-2021-33910
systemd: uncontrolled allocation on the stack in function unit_name_path_escape leads to crash
Severity Score
Exploit Likelihood
Affected Versions
9Public Exploits
3Exploited in Wild
-Decision
Descriptions
basic/unit-name.c in systemd prior to 246.15, 247.8, 248.5, and 249.1 has a Memory Allocation with an Excessive Size Value (involving strdupa and alloca for a pathname controlled by a local attacker) that results in an operating system crash.
basic/unit-name.c en systemd anterior a las versiones 246.15, 247.8, 248.5 y 249.1 tiene una asignación de memoria con un valor de tamaño excesivo (que involucra a strdupa y alloca para un nombre de ruta controlado por un atacante local) que resulta en una caída del sistema operativo
A flaw was found in systemd. The use of alloca function with an uncontrolled size in function unit_name_path_escape allows a local attacker, able to mount a filesystem on a very long path, to crash systemd and the whole system by allocating a very large space in the stack. The highest threat from this vulnerability is to the system availability.
The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host's resources and performing administrative tasks. The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host's resources and performing administrative tasks. Issues addressed include a use-after-free vulnerability.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2021-06-07 CVE Reserved
- 2021-07-20 CVE Published
- 2021-07-21 First Exploit
- 2024-08-04 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-400: Uncontrolled Resource Consumption
- CWE-770: Allocation of Resources Without Limits or Throttling
CAPEC
References (21)
| URL | Tag | Source |
|---|---|---|
| https://cert-portal.siemens.com/productcert/pdf... | X_refsource_confirm |
|
| https://security.netapp.com/advisory/ntap-20211... | Third Party Advisory |
|
| URL | Date | SRC |
|---|---|---|
| https://packetstorm.news/files/id/163621 | 2021-07-21 | |
| http://packetstormsecurity.com/files/163621/Sequoia-A-Deep-Root-In-Linuxs-... | 2024-08-04 | |
| https://www.openwall.com/lists/oss-security/2021/07/20/2 | 2024-08-04 |