PT-2021-5656 · Linux+5 · Linux Kernel+5

Hangyu Hua

+1

·

Published

2021-12-10

·

Updated

2023-08-14

·

CVE-2021-45095

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions Linux kernel versions through 5.15.8
Description The issue is related to a refcount leak in the pep sock accept function in the Linux kernel. This leak is associated with insufficient protection of internal data. Exploitation of this issue may allow an attacker to gain unauthorized access to protected information.
Recommendations For Linux kernel versions through 5.15.8, update to a version that contains a fix for this issue to resolve the refcount leak in the pep sock accept function. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

ALT-PU-2021-3554
ALT-PU-2021-3644
ALT-PU-2021-3660
ALT-PU-2022-1015
ALT-PU-2022-1016
ALT-PU-2022-1240
ALT-PU-2022-1419
ALT-PU-2022-1421
ALT-PU-2023-1814
ALT-PU-2023-4894
AZL-7033
BDU:2022-00094
CVE-2021-45095
DLA-2940-1
DLA-2941-1
DSA-5050-1
DSA-5096-1
MGASA-2022-0021
MGASA-2022-0022
OESA-2021-1475
OPENSUSE-SU-2022:0363-1
OPENSUSE-SU-2022:0366-1
OPENSUSE-SU-2022:0370-1
OPENSUSE-SU-2022_0363-1
OPENSUSE-SU-2022_0366-1
OPENSUSE-SU-2022_0370-1
SUSE-SU-2022:0362-1
SUSE-SU-2022:0363-1
SUSE-SU-2022:0365-1
SUSE-SU-2022:0366-1
SUSE-SU-2022:0367-1
SUSE-SU-2022:0370-1
SUSE-SU-2022:0371-1
SUSE-SU-2022:0477-1
SUSE-SU-2022:0543-1
SUSE-SU-2022:0544-1
SUSE-SU-2022:0555-1
SUSE-SU-2022:0765-1
SUSE-SU-2022:0767-1
SUSE-SU-2022:14905-1
SUSE-SU-2022_14905-1
USN-5278-1
USN-5337-1
USN-5338-1
USN-5339-1
USN-5343-1
USN-5368-1
USN-5377-1

Affected Products

Alt Linux
Astra Linux
Linuxmint
Linux Kernel
Suse
Ubuntu