In the Linux kernel before 5.1.17, ptrace_link in kernel/ptrace.c mishandles the recording of the credentials of a process that wants to create a ptrace relationship, which allows local users to obtain root access by leveraging certain scenarios with a parent-child process relationship, where a parent drops privileges and calls execve (potentially allowing control by an attacker). One contributing factor is an object lifetime issue (which can also cause a panic). Another contributing factor is incorrect marking of a ptrace relationship as privileged, which is exploitable through (for example) Polkit's pkexec helper with PTRACE_TRACEME. NOTE: SELinux deny_ptrace might be a usable workaround in some environments.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HCanonical Ubuntu
OSCanonical16.0418.0419.04Debian
OSDebian10.08.09.0Fedora Project Fedora
OSFedoraproject29Linux Kernel
OSLinux4.20 – 5.1.17 (bez)3.16.52 – 3.16.71 (bez)4.1.39 – 4.2 (bez)4.4.40 – 4.4.185 (bez)4.8.16 – 4.9 (bez)4.9.1 – 4.9.185 (bez)4.10 – 4.14.133 (bez)4.15 – 4.19.58 (bez)Netapp Active Iq Unified Manager
APPNetappwszystkie wersjeNetapp Aff A700s
HWNetappwszystkie wersjeNetapp Aff A700s Firmware
OSNetappwszystkie wersjeNetapp E Series Performance Analyzer
APPNetappwszystkie wersjeNetapp E Series Santricity Os Controller
APPNetapp11.0.0 – 11.60.3Netapp H410c
HWNetappwszystkie wersjeNetapp H410c Firmware
OSNetappwszystkie wersjeNetapp H610s
HWNetappwszystkie wersjeNetapp H610s Firmware
OSNetappwszystkie wersjeNetapp Hci Compute Node
HWNetappwszystkie wersjeNetapp Hci Management Node
APPNetappwszystkie wersjeNetapp Service Processor
APPNetappwszystkie wersjeNetapp Solidfire
APPNetappwszystkie wersjeNetapp Steelstore Cloud Integrated Storage
APPNetappwszystkie wersjeRed Hat Enterprise Linux
OSRedhat7.08.0Red Hat Enterprise Linux For Arm 64
OSRedhat7.0_aarch64Red Hat Enterprise Linux For IBM Z Systems
OSRedhat7.0_s390xRed Hat Enterprise Linux For Real Time
OSRedhat8Red Hat Enterprise Linux For Real Time For Nfv
OSRedhat8.0Red Hat Enterprise Linux For Real Time For Nfv Tus
OSRedhat8.28.48.68.8Red Hat Enterprise Linux For Real Time Tus
OSRedhat8.28.48.68.8
CISA KEV — detailsi
- Vendori
- Linux
- Producti
- Kernel
- Added to KEVi
- December 10, 2021
- Remediation deadline (US Federal)i
- June 10, 2022(overdue)
Apply updates per vendor instructions.
Kernel/ptrace.c in Linux kernel mishandles contains an improper privilege management vulnerability that allows local users to obtain root access.
Related vulnerabilities
GNU Inetutils telnetd: ominięcie uwierzytelnienia przez zmienną USER
Type confusion w V8 (Google Chrome) — zdalne uszkodzenie sterty
Sudo: eskalacja uprawnień do root poprzez opcję --chroot (CVE-2025-32463)
RCE przez deserializację PHP w Roundcube Webmail (parametr _from)
Commvault Command Center – nieuwierzytelniony RCE przez path traversal w ZIP