USN-5039-1

Advisory lineage Upstream: 2 Downstream: 0

Upstream

CVE-2021-22555 UBUNTU-CVE-2021-22555

Published: 12 Aug 2021, 22:28

Last modified:23 May 2026, 01:32

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

12 Aug 2021, 22:28

Published

Vulnerability first disclosed

23 May 2026, 01:32

Last Modified

Vulnerability information updated

Description

linux, linux-aws, linux-kvm, linux-lts-xenial vulnerability Andy Nguyen discovered that the netfilter subsystem in the Linux kernel contained an out-of-bounds write in its setsockopt() implementation. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code.

Affected Systems

ubuntu•linux
< 3.13.0-187.238 | < 4.4.0-213.245
ubuntu•linux-aws
< 4.4.0-1095.100 | < 4.4.0-1131.145
ubuntu•linux-kvm
< 4.4.0-1096.105
ubuntu•linux-lts-xenial
< 4.4.0-213.245~14.04.1

References (2)

https://ubuntu.com/security/notices/USN-5039-1
https://ubuntu.com/security/CVE-2021-22555