A use-after-free exists in drivers/tee/tee_shm.c in the TEE subsystem in the Linux kernel through 5.15.11. This occurs because of a race condition in tee_shm_get_from_id during an attempt to free a shared memory object.

References

git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=dfd0743f1d9ea76931510ed150334d571fbab49d

git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/log/drivers/tee/tee_shm.c

github.com/pjlantz/optee-qemu/blob/main/README.md

lists.debian.org/debian-lts-announce/2022/03/msg00012.html

lore.kernel.org/lkml/20211215092501.1861229-1-jens.wiklander%40linaro.org/

security.netapp.com/advisory/ntap-20220114-0003/

www.debian.org/security/2022/dsa-5096

ubuntucve 1

debiancve 1

cbl_mariner 2

prion 1

cve 1

veracode 1

cnvd 1

nvd 1

redhatcve 1

githubexploit 1

photon 4

openvas 31

ubuntu 6

cloudfoundry 2

nessus 42

osv 11

mageia 2

oraclelinux 3

amazon 2

suse 3

rocky 2

ibm 1

redos 1

almalinux 1

redhat 7

debian 2

ubuntucve

CVE-2021-44733

2021-12-22 00:00:00

debiancve

CVE-2021-44733

2021-12-22 17:15:09

cbl_mariner

CVE-2021-44733 affecting package kernel for versions less than 5.15.18.1-1

2022-04-09 06:52:47

CVE-2021-44733 affecting package kernel 5.10.189.1-1

2022-01-26 22:54:05

prion

Race condition

2021-12-22 17:15:00

cve

CVE-2021-44733

2021-12-22 17:15:09

veracode

Denial Of Service (DoS)

2022-03-26 18:25:40

cnvd

Linux kernel has unspecified vulnerabilities (CNVD-2021-102383)

2021-12-24 00:00:00

nvd

CVE-2021-44733

2021-12-22 17:15:09

redhatcve

CVE-2021-44733

2021-12-15 14:52:03

githubexploit

Exploit for Use After Free in Linux Linux Kernel

2021-12-23 17:45:35

photon

Important Photon OS Security Update - PHSA-2022-0350

2022-01-04 00:00:00

Important Photon OS Security Update - PHSA-2022-0146

2022-01-25 00:00:00

Important Photon OS Security Update - PHSA-2022-4.0-0146

2022-01-25 00:00:00

openvas

Mageia: Security Advisory (MGASA-2022-0022)

2022-01-28 00:00:00

Ubuntu: Security Advisory (USN-5339-1)

2022-03-23 00:00:00

Mageia: Security Advisory (MGASA-2022-0021)

2022-01-28 00:00:00

ubuntu

Linux kernel vulnerabilities

2022-03-22 00:00:00

Linux kernel vulnerabilities

2022-03-22 00:00:00

Linux kernel (BlueField) vulnerabilities

2022-04-13 00:00:00

cloudfoundry

USN-5339-1: Linux kernel vulnerabilities | Cloud Foundry

2022-05-23 00:00:00

USN-5338-1: Linux kernel vulnerabilities | Cloud Foundry

2022-04-14 00:00:00

nessus

Ubuntu 16.04 ESM / 18.04 LTS : Linux kernel vulnerabilities (USN-5339-1)

2022-03-22 00:00:00

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel-container (ELSA-2022-9148)

2022-02-16 00:00:00

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2022-9147)

2022-02-16 00:00:00

osv

linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-4.15, linux-dell300x, linux-hwe, linux-gcp, linux-gcp-4.15, linux-kvm, linux-oracle, linux-raspi2, linux-snapdragon vulnerabilities

2022-03-22 07:46:46

linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-azure-fde, linux-gcp, linux-gcp-5.4, linux-gke, lnux-gke-5.4, linux-gkeop, linux-gkeop-5.4, linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4 vulnerabilities

2022-03-22 07:26:42

linux-bluefield vulnerabilities

2022-04-13 02:49:23

mageia

Updated kernel-linus packages fix security vulnerabilities

2022-01-18 18:43:35

Updated kernel packages fix security vulnerabilities

2022-01-18 18:43:35

oraclelinux

Unbreakable Enterprise kernel security update

2022-02-14 00:00:00

Unbreakable Enterprise kernel-container security update

2022-02-14 00:00:00

kernel security, bug fix, and enhancement update

2022-05-17 00:00:00

amazon

Important: kernel

2022-02-04 23:25:00

Important: kernel

2022-02-04 23:25:00

suse

Security update for the Linux Kernel (critical)

2022-02-11 00:00:00

Security update for the Linux Kernel (critical)

2022-02-10 00:00:00

Security update for the Linux Kernel (critical)

2022-02-10 00:00:00

rocky

kernel-rt security and bug fix update

2022-05-10 06:42:36

kernel security, bug fix, and enhancement update

2022-05-10 08:11:36

ibm

Security Bulletin: Multiple vulnerabilities in Linux Kernel affect IBM Spectrum Protect Plus

2022-06-29 23:37:51

redos

ROS-20220919-01

2022-09-19 00:00:00

almalinux

Important: kernel security, bug fix, and enhancement update

2022-05-10 08:11:36

redhat

(RHSA-2022:1975) Important: kernel-rt security and bug fix update

2022-05-10 06:42:36

(RHSA-2022:4814) Moderate: Migration Toolkit for Containers (MTC) 1.6.5 security and bug fix update

2022-05-31 09:45:12

(RHSA-2022:5483) Moderate: Migration Toolkit for Containers (MTC) 1.7.2 security and bug fix update

2022-07-01 09:48:45

debian

[SECURITY] [DLA 2941-1] linux-4.19 security update

2022-03-09 12:40:55

[SECURITY] [DSA 5096-1] linux security update

2022-03-09 15:30:58

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

7.6 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

47.0%

JSON

Related for CVELIST:CVE-2021-44733