PT-2021-4224 · Linux+9 · Linux Kernel+9

Syzbot

·

Published

2021-03-04

·

Updated

2023-05-17

·

CVE-2021-33033

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.11.14
Description The issue is related to a use-after-free error in the cipso v4 genopt function, located in net/ipv4/cipso ipv4.c, due to mishandled CIPSO and CALIPSO refcounting for the DOI definitions. This can lead to writing an arbitrary value, potentially allowing an attacker to execute arbitrary code.
Recommendations For versions prior to 5.11.14, update to version 5.11.14 or later to resolve the issue. As a temporary workaround, consider restricting access to the cipso v4 genopt function until a patch is available.

Exploit

Fix

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALSA-2021:4356
ALT-PU-2021-1666
ALT-PU-2021-1698
ALT-PU-2021-1869
ALT-PU-2021-1888
ALT-PU-2021-1896
ALT-PU-2022-1240
ALT-PU-2022-1419
ALT-PU-2022-1421
ALT-PU-2023-1814
AZL-6561
BDU:2021-04828
CESA-2021_2725
CESA-2021_4140
CESA-2021_4356
CVE-2021-33033
DLA-2940-1
OESA-2021-1176
OPENSUSE-SU-2021:1477-1
OPENSUSE-SU-2021:3641-1
OPENSUSE-SU-2021:3675-1
OPENSUSE-SU-2021:3876-1
OPENSUSE-SU-2021_1460-1
OPENSUSE-SU-2021_1477-1
OPENSUSE-SU-2021_3641-1
OPENSUSE-SU-2021_3655-1
OPENSUSE-SU-2021_3675-1
OPENSUSE-SU-2021_3876-1
RHSA-2021:2725
RHSA-2021:2726
RHSA-2021:4140
RHSA-2021:4356
RHSA-2021_2725
RHSA-2021_2726
RHSA-2021_4140
RHSA-2021_4356
SUSE-SU-2021:14849-1
SUSE-SU-2021:3641-1
SUSE-SU-2021:3642-1
SUSE-SU-2021:3675-1
SUSE-SU-2021:3723-1
SUSE-SU-2021:3748-1
SUSE-SU-2021:3876-1
SUSE-SU-2021:3929-1
SUSE-SU-2021:3935-1
SUSE-SU-2021:3969-1
SUSE-SU-2021_14849-1
USN-4979-1
USN-4984-1
USN-5343-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Red Os
Suse
Ubuntu