{"id":"CVE-2021-4154","details":"A use-after-free flaw was found in cgroup1_parse_param in kernel/cgroup/cgroup-v1.c in the Linux kernel's cgroup v1 parser. A local attacker with a user privilege could cause a privilege escalation by exploiting the fsconfig syscall parameter leading to a container breakout and a denial of service on the system.","aliases":["A-218836280","ASB-A-218836280"],"modified":"2026-03-15T22:42:53.412693Z","published":"2022-02-04T23:15:12.307Z","related":["ALSA-2022:0825","SUSE-SU-2022:0241-1","SUSE-SU-2022:0254-1","SUSE-SU-2022:0257-1","SUSE-SU-2022:0291-1","SUSE-SU-2022:0292-1","SUSE-SU-2022:0293-1","SUSE-SU-2022:0295-1","SUSE-SU-2022:1669-1","SUSE-SU-2022:1676-1","SUSE-SU-2022:1687-1"],"references":[{"type":"ADVISORY","url":"https://cloud.google.com/anthos/clusters/docs/security-bulletins#gcp-2022-002"},{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20220225-0004/"},{"type":"FIX","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2034514"},{"type":"FIX","url":"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=3b0462726e7ef281c35a7a4ae33e93ee2bc9975b"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-4154.json","unresolved_ranges":[{"events":[{"introduced":"5.1"},{"fixed":"5.4.134"}]},{"events":[{"introduced":"5.5"},{"fixed":"5.10.52"}]},{"events":[{"introduced":"5.11"},{"fixed":"5.12.19"}]},{"events":[{"introduced":"5.13"},{"fixed":"5.13.4"}]},{"events":[{"introduced":"0"},{"last_affected":"5.14-rc1"}]},{"events":[{"introduced":"0"},{"last_affected":"4.0"}]},{"events":[{"introduced":"0"},{"last_affected":"8.0"}]},{"events":[{"introduced":"0"},{"last_affected":"h300e"}]},{"events":[{"introduced":"0"},{"last_affected":"h300s"}]},{"events":[{"introduced":"0"},{"last_affected":"h410s"}]},{"events":[{"introduced":"0"},{"last_affected":"h500e"}]},{"events":[{"introduced":"0"},{"last_affected":"h500s"}]},{"events":[{"introduced":"0"},{"last_affected":"h700e"}]},{"events":[{"introduced":"0"},{"last_affected":"h700s"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"}]}