PT-2021-1521 · Linux+5 · Linux Kernel+5

Published

2021-12-15

·

Updated

2025-02-24

·

CVE-2021-22600

CVSS v2.0

9.0

High

VectorAV:N/AC:L/Au:S/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Linux Kernel versions prior to the version that includes the fix for the double free bug in packet set ring()
Description A double free bug in the packet set ring() function in net/packet/af packet.c can be exploited by a local user through crafted syscalls to escalate privileges or deny service. This issue is related to a memory corruption due to a use after free, which could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.
Recommendations To resolve the issue, upgrade the kernel past the affected versions or rebuild past ec6af094ea28f0f2dda1a6a33b14cd57e36a9755. As a temporary workaround, consider disabling the packet set ring() function until a patch is available.

Exploit

Fix

Double Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-415

Related Identifiers

ALT-PU-2021-3610
ALT-PU-2021-3611
ALT-PU-2021-3636
ALT-PU-2021-3644
ALT-PU-2021-3660
ALT-PU-2022-1012
ALT-PU-2022-1015
ALT-PU-2022-1016
ALT-PU-2022-1017
ALT-PU-2022-1054
ALT-PU-2022-1057
ALT-PU-2022-1365
ALT-PU-2022-1419
ALT-PU-2022-1421
ALT-PU-2022-1428
ALT-PU-2022-1467
ALT-PU-2022-2096
ALT-PU-2023-4894
ASB-A-213464034
AZL-8450
BDU:2022-00680
CVE-2021-22600
DLA-2941-1
DSA-5096-1
OESA-2022-1517
OPENSUSE-SU-2022:0363-1
OPENSUSE-SU-2022:0370-1
OPENSUSE-SU-2022_0363-1
OPENSUSE-SU-2022_0370-1
SUSE-SU-2022:0363-1
SUSE-SU-2022:0365-1
SUSE-SU-2022:0370-1
SUSE-SU-2022:0543-1
SUSE-SU-2022:0544-1
SUSE-SU-2022:0619-1
SUSE-SU-2022:0660-1
SUSE-SU-2022_0365-1
SUSE-SU-2022_0544-1
USN-5266-1
USN-5278-1
USN-5294-1
USN-5294-2
USN-5295-1
USN-5295-2
USN-5298-1

Affected Products

Alt Linux
Astra Linux
Linux Kernel
Linuxmint
Suse
Ubuntu