CVE-2021-47218

MEDIUM

Linux Kernel 5.8-5.10.81, 5.10.82-5.10.*, 5.15.5-5.15.*, >=5.16 - NULL Pointer Dereference in SELinux

Title source: llm
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: selinux: fix NULL-pointer dereference when hashtab allocation fails When the hash table slot array allocation fails in hashtab_init(), h->size is left initialized with a non-zero value, but the h->htable pointer is NULL. This may then cause a NULL pointer dereference, since the policydb code relies on the assumption that even after a failed hashtab_init(), hashtab_map() and hashtab_destroy() can be safely called on it. Yet, these detect an empty hashtab only by looking at the size. Fix this by making sure that hashtab_init() always leaves behind a valid empty hashtab when the allocation fails.

References (3)

Core 3

Scores

CVSS v3 5.5
EPSS 0.0022
EPSS Percentile 13.1%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-476
Status published
Products (10)
Linux/Linux < 5.8
Linux/Linux 03414a49ad5f3c56988c36d2070e402ffa17feaf - 83c8ab8503adf56bf68dafc7a382f4946c87da79
Linux/Linux 03414a49ad5f3c56988c36d2070e402ffa17feaf - b17dd53cac769dd13031b0ca34f90cc65e523fab
Linux/Linux 03414a49ad5f3c56988c36d2070e402ffa17feaf - dc27f3c5d10c58069672215787a96b4fae01818b
Linux/Linux 5.10.82 - 5.10.*
Linux/Linux 5.15.5 - 5.15.*
Linux/Linux 5.16
Linux/Linux 5.8
linux/linux_kernel 5.16 rc1 (2 CPE variants)
linux/linux_kernel 5.8 - 5.10.82
Published Apr 10, 2024
Tracked Since Feb 18, 2026