UBUNTU-CVE-2021-4159

Advisory lineage Upstream: 1 Downstream: 5
Upstream
CVE-2021-4159
Published: 24 Aug 2022, 16:15
Last modified:03 Jun 2026, 13:34

Vulnerability Summary

Overall Risk (default)
low
18/100
CVSS Score
4.4 MEDIUM
3.1 (osv_ubuntu)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

24 Aug 2022, 16:15
Published
Vulnerability first disclosed
03 Jun 2026, 13:34
Last Modified
Vulnerability information updated

Description

A vulnerability was found in the Linux kernel's EBPF verifier when handling internal data structures. Internal memory locations could be returned to userspace. A local attacker with the permissions to insert eBPF code to the kernel can use this to leak internal kernel memory details defeating some of the exploit mitigations in place for the kernel.

CVSS Metrics

  • v3.1MEDIUMScore: 4.4CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Affected Systems

  • ubuntulinux

    < 4.15.0-201.212 | < 5.4.0-128.144

  • ubuntulinux-aws

    < 4.15.0-1147.159 | < 5.4.0-1086.93

  • ubuntulinux-aws-5.0

    all

  • ubuntulinux-aws-5.3

    all

  • ubuntulinux-aws-5.4

    < 5.4.0-1086.93~18.04.1

  • ubuntulinux-aws-5.8

    all

  • ubuntulinux-aws-fips

    < 4.15.0-2087.93 | all | < 5.4.0-1086.93+fips1

  • ubuntulinux-aws-hwe

    < 4.15.0-1147.159~16.04.1

  • ubuntulinux-azure

    < 4.15.0-1158.173~14.04.1 | < 4.15.0-1159.174~16.04.1 | all | < 5.4.0-1094.100

  • ubuntulinux-azure-4.15

    < 4.15.0-1158.173

  • ubuntulinux-azure-5.3

    all

  • ubuntulinux-azure-5.4

    < 5.4.0-1094.100~18.04.1

  • ubuntulinux-azure-5.8

    all

  • ubuntulinux-azure-edge

    all

  • ubuntulinux-azure-fips

    < 4.15.0-2067.73 | all | < 5.4.0-1094.100+fips1

  • ubuntulinux-bluefield

    < 5.4.0-1047.52 | all

  • ubuntulinux-dell300x

    < 4.15.0-1058.63

  • ubuntulinux-fips

    < 4.15.0-1104.115 | all | < 5.4.0-1062.70

  • ubuntulinux-gcp

    < 4.15.0-1142.158~16.04.1 | all | < 5.4.0-1090.98

  • ubuntulinux-gcp-4.15

    < 4.15.0-1142.158

  • ubuntulinux-gcp-5.3

    all

  • ubuntulinux-gcp-5.4

    < 5.4.0-1092.101~18.04.1

  • ubuntulinux-gcp-5.8

    all

  • ubuntulinux-gcp-fips

    < 4.15.0-2052.57 | all | < 5.4.0-1092.101+fips1

  • ubuntulinux-gke

    < 5.4.0-1084.90

  • ubuntulinux-gke-4.15

    all

  • ubuntulinux-gke-5.4

    all

  • ubuntulinux-gkeop

    < 5.4.0-1054.57

  • ubuntulinux-gkeop-5.4

    all

  • ubuntulinux-hwe

    < 4.15.0-201.212~16.04.1 | all

  • ubuntulinux-hwe-5.11

    all

  • ubuntulinux-hwe-5.4

    < 5.4.0-128.144~18.04.1

  • ubuntulinux-hwe-5.8

    all

  • ubuntulinux-hwe-edge

    all | all

  • ubuntulinux-ibm

    < 5.4.0-1034.38

  • ubuntulinux-ibm-5.4

    < 5.4.0-1034.38~18.04.1

  • ubuntulinux-intel-5.13

    all

  • ubuntulinux-intel-iot-realtime

    all

  • ubuntulinux-iot

    < 5.4.0-1005.7

  • ubuntulinux-kvm

    < 4.15.0-1133.138 | < 5.4.0-1076.81

  • ubuntulinux-nvidia

    all

  • ubuntulinux-oem

    all

  • ubuntulinux-oem-5.10

    all

  • ubuntulinux-oem-5.13

    all

  • ubuntulinux-oem-5.6

    all

  • ubuntulinux-oracle

    < 4.15.0-1112.123~16.04.1 | < 4.15.0-1112.123 | < 5.4.0-1084.92

  • ubuntulinux-oracle-5.0

    all

  • ubuntulinux-oracle-5.3

    all

  • ubuntulinux-oracle-5.4

    < 5.4.0-1084.92~18.04.1

  • ubuntulinux-oracle-5.8

    all

Showing first 50 affected entries in server-rendered view.

References (7)