CVE-2021-46936
📋 TL;DR
This is a use-after-free vulnerability in the Linux kernel's networking subsystem that can cause kernel panic and system crashes. It affects Linux systems running vulnerable kernel versions when network namespaces are destroyed. The vulnerability allows attackers with local access to crash the system, potentially leading to denial of service.
💻 Affected Systems
- Linux kernel
📦 What is this software?
Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →⚠️ Risk & Real-World Impact
Worst Case
Kernel panic leading to complete system crash and denial of service, potentially requiring physical reboot of affected systems.
Likely Case
System crash or instability when network namespaces are destroyed, causing service disruption on affected Linux systems.
If Mitigated
Limited impact if systems are patched or don't use network namespace features extensively.
🎯 Exploit Status
The vulnerability has been publicly discussed since 2017 and a reliable trigger exists. Exploitation requires local access to trigger the use-after-free condition.
🛠️ Fix & Mitigation
✅ Official Fix
Patch Version: Fixed in stable kernel releases via commits referenced in CVE details
Vendor Advisory: https://git.kernel.org/stable/c/08eacbd141e2495d2fcdde84358a06c4f95cbb13
Restart Required: Yes
Instructions:
1. Update Linux kernel to patched version from your distribution vendor. 2. Reboot system to load new kernel. 3. Verify kernel version after reboot.
🔧 Temporary Workarounds
Disable network namespaces
linuxPrevent creation of new network namespaces to avoid triggering the vulnerability
echo 0 > /proc/sys/user/max_user_namespaces
Restrict user namespace creation
linuxLimit ability to create user namespaces which can create network namespaces
sysctl -w user.max_user_namespaces=0
🧯 If You Can't Patch
- Restrict local user access to systems, implement strict privilege separation
- Monitor for system crashes and implement high availability/failover for critical systems
🔍 How to Verify
Check if Vulnerable:
Check kernel version and compare with affected versions. Vulnerable if running Linux kernel 5.4+ without patches.Check Version:
uname -rVerify Fix Applied:
Check kernel version after update matches patched versions from distribution vendor.📡 Detection & Monitoring
Log Indicators:
- Kernel panic messages in /var/log/messages or dmesg
- System crash/reboot events
- Network namespace destruction events
Network Indicators:
- Sudden loss of network connectivity on affected systems
SIEM Query:
source="kernel" AND ("panic" OR "BUG" OR "use-after-free" OR "tw_timer_handler")🔗 References
- https://git.kernel.org/stable/c/08eacbd141e2495d2fcdde84358a06c4f95cbb13
- https://git.kernel.org/stable/c/15579e1301f856ad9385d720c9267c11032a5022
- https://git.kernel.org/stable/c/2386e81a1d277f540e1285565c9d41d531bb69d4
- https://git.kernel.org/stable/c/5c2fe20ad37ff56070ae0acb34152333976929b4
- https://git.kernel.org/stable/c/a8e1944b44f94f5c5f530e434c5eaee787254566
- https://git.kernel.org/stable/c/e22e45fc9e41bf9fcc1e92cfb78eb92786728ef0
- https://git.kernel.org/stable/c/e73164e89d1be561228a4534e1091369ee4ba41a
- https://git.kernel.org/stable/c/fe5838c22b986c1190f1dce9aa09bf6a491c1a69
- https://git.kernel.org/stable/c/08eacbd141e2495d2fcdde84358a06c4f95cbb13
- https://git.kernel.org/stable/c/15579e1301f856ad9385d720c9267c11032a5022
- https://git.kernel.org/stable/c/2386e81a1d277f540e1285565c9d41d531bb69d4
- https://git.kernel.org/stable/c/5c2fe20ad37ff56070ae0acb34152333976929b4
- https://git.kernel.org/stable/c/a8e1944b44f94f5c5f530e434c5eaee787254566
- https://git.kernel.org/stable/c/e22e45fc9e41bf9fcc1e92cfb78eb92786728ef0
- https://git.kernel.org/stable/c/e73164e89d1be561228a4534e1091369ee4ba41a
- https://git.kernel.org/stable/c/fe5838c22b986c1190f1dce9aa09bf6a491c1a69
