CVE-2021-33033
Description
The Linux kernel before 5.11.14 has a use-after-free in cipso_v4_genopt in net/ipv4/cipso_ipv4.c because the CIPSO and CALIPSO refcounting for the DOI definitions is mishandled, aka CID-ad5d07f4a9cd. This leads to writing an arbitrary value.
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.037
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Linux kernel (USN-4979-1) linux-image-kvm_4.15.0.1092.88_amd64.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-generic_4.15.0.144.131_i386.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-generic_4.15.0.144.131_amd64.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-virtual_4.15.0.144.131_i386.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-virtual_4.15.0.144.131_amd64.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-lowlatency_4.15.0.144.131_i386.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-lowlatency_4.15.0.144.131_amd64.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-aws-lts-18.04_4.15.0.1103.106_amd64.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-gcp-lts-18.04_4.15.0.1100.118_amd64.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-4.15.0-1092-kvm_4.15.0-1092.94_amd64.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-4.15.0-1100-gcp_4.15.0-1100.113_amd64.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-4.15.0-1103-aws_4.15.0-1103.110_amd64.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-azure-lts-18.04_4.15.0.1115.88_amd64.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-oracle-lts-18.04_4.15.0.1072.82_amd64.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-4.15.0-1115-azure_4.15.0-1115.128_amd64.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-4.15.0-1072-oracle_4.15.0-1072.80_amd64.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-4.15.0-144-generic_4.15.0-144.148_i386.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-4.15.0-144-generic_4.15.0-144.148_amd64.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-4.15.0-144-lowlatency_4.15.0-144.148_i386.deb | Linux |
| Linux kernel (USN-4979-1) linux-image-4.15.0-144-lowlatency_4.15.0-144.148_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-aws_5.8.0.1035.37_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-gcp_5.8.0.1032.32_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-gke_5.8.0.1032.32_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-kvm_5.8.0.1028.30_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-azure_5.8.0.1033.33_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-oracle_5.8.0.1031.30_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-generic_5.8.0.55.60_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-virtual_5.8.0.55.60_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-lowlatency_5.8.0.55.60_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-5.8.0-1028-kvm_5.8.0-1028.30_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-5.8.0-1032-gcp_5.8.0-1032.34_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-5.8.0-1035-aws_5.8.0-1035.37_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-5.8.0-1033-azure_5.8.0-1033.35_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-5.8.0-55-generic_5.8.0-55.62_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-5.8.0-55-generic_5.8.0-55.62~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-5.8.0-1031-oracle_5.8.0-1031.32_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-generic-hwe-20.04_5.8.0.55.62~20.04.39_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-virtual-hwe-20.04_5.8.0.55.62~20.04.39_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-5.8.0-55-lowlatency_5.8.0-55.62_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-5.8.0-55-lowlatency_5.8.0-55.62~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-4984-1) linux-image-lowlatency-hwe-20.04_5.8.0.55.62~20.04.39_amd64.deb | Linux |
| Kernel-uek update (ELSA-2021-9349) kernel-uek-4.14.35-2047.505.4.el7uek.x86_64.rpm | Linux |
| Kernel-uek-debug update (ELSA-2021-9349) kernel-uek-debug-4.14.35-2047.505.4.el7uek.x86_64.rpm | Linux |
| Kernel-uek-debug-devel update (ELSA-2021-9349) kernel-uek-debug-devel-4.14.35-2047.505.4.el7uek.x86_64.rpm | Linux |
| Kernel-uek-devel update (ELSA-2021-9349) kernel-uek-devel-4.14.35-2047.505.4.el7uek.x86_64.rpm | Linux |
| Kernel-uek-doc update (ELSA-2021-9349) kernel-uek-doc-4.14.35-2047.505.4.el7uek.noarch.rpm | Linux |
| Kernel-uek-tools update (ELSA-2021-9349) kernel-uek-tools-4.14.35-2047.505.4.el7uek.x86_64.rpm | Linux |
| Bpftool update (ELSA-2021-2725) bpftool-3.10.0-1160.36.2.el7.x86_64.rpm | Linux |
| Kernel update (ELSA-2021-2725) kernel-3.10.0-1160.36.2.el7.x86_64.rpm | Linux |
| Kernel-abi-whitelists update (ELSA-2021-2725) kernel-abi-whitelists-3.10.0-1160.36.2.el7.noarch.rpm | Linux |
| Kernel-debug update (ELSA-2021-2725) kernel-debug-3.10.0-1160.36.2.el7.x86_64.rpm | Linux |
| Kernel-debug-devel update (ELSA-2021-2725) kernel-debug-devel-3.10.0-1160.36.2.el7.x86_64.rpm | Linux |
| Kernel-devel update (ELSA-2021-2725) kernel-devel-3.10.0-1160.36.2.el7.x86_64.rpm | Linux |
| Kernel-doc update (ELSA-2021-2725) kernel-doc-3.10.0-1160.36.2.el7.noarch.rpm | Linux |
| Kernel-headers update (ELSA-2021-2725) kernel-headers-3.10.0-1160.36.2.el7.x86_64.rpm | Linux |
| Kernel-tools update (ELSA-2021-2725) kernel-tools-3.10.0-1160.36.2.el7.x86_64.rpm | Linux |
| Kernel-tools-libs update (ELSA-2021-2725) kernel-tools-libs-3.10.0-1160.36.2.el7.x86_64.rpm | Linux |
| Kernel-tools-libs-devel update (ELSA-2021-2725) kernel-tools-libs-devel-3.10.0-1160.36.2.el7.x86_64.rpm | Linux |
| Perf update (ELSA-2021-2725) perf-3.10.0-1160.36.2.el7.x86_64.rpm | Linux |
| Python-perf update (ELSA-2021-2725) python-perf-3.10.0-1160.36.2.el7.x86_64.rpm | Linux |
| Kernel-uek update (ELSA-2021-9362) kernel-uek-5.4.17-2102.203.5.el8uek.x86_64.rpm | Linux |
| Kernel-uek-debug update (ELSA-2021-9362) kernel-uek-debug-5.4.17-2102.203.5.el8uek.x86_64.rpm | Linux |
| Kernel-uek-debug-devel update (ELSA-2021-9362) kernel-uek-debug-devel-5.4.17-2102.203.5.el8uek.x86_64.rpm | Linux |
| Kernel-uek-devel update (ELSA-2021-9362) kernel-uek-devel-5.4.17-2102.203.5.el8uek.x86_64.rpm | Linux |
| Kernel-uek-doc update (ELSA-2021-9362) kernel-uek-doc-5.4.17-2102.203.5.el8uek.noarch.rpm | Linux |
| Kernel-uek-container update (ELSA-2021-9363) kernel-uek-container-5.4.17-2102.203.5.el8.x86_64.rpm | Linux |
| Kernel-uek-container-debug update (ELSA-2021-9363) kernel-uek-container-debug-5.4.17-2102.203.5.el8.x86_64.rpm | Linux |
| (RHSA-2021:2725) kernel security and bug fix update bpftool-3.10.0-1160.36.2.el7.x86_64.rpm | Linux |
| (RHSA-2021:2725) kernel security and bug fix update kernel-3.10.0-1160.36.2.el7.x86_64.rpm | Linux |
| (RHSA-2021:2725) kernel security and bug fix update kernel-abi-whitelists-3.10.0-1160.36.2.el7.noarch.rpm | Linux |
| (RHSA-2021:2725) kernel security and bug fix update kernel-debug-3.10.0-1160.36.2.el7.x86_64.rpm | Linux |
| (RHSA-2021:2725) kernel security and bug fix update kernel-debug-devel-3.10.0-1160.36.2.el7.x86_64.rpm | Linux |
| (RHSA-2021:2725) kernel security and bug fix update kernel-devel-3.10.0-1160.36.2.el7.x86_64.rpm | Linux |
| (RHSA-2021:2725) kernel security and bug fix update kernel-doc-3.10.0-1160.36.2.el7.noarch.rpm | Linux |
| (RHSA-2021:2725) kernel security and bug fix update kernel-headers-3.10.0-1160.36.2.el7.x86_64.rpm | Linux |
| (RHSA-2021:2725) kernel security and bug fix update kernel-tools-3.10.0-1160.36.2.el7.x86_64.rpm | Linux |
| (RHSA-2021:2725) kernel security and bug fix update kernel-tools-libs-3.10.0-1160.36.2.el7.x86_64.rpm | Linux |
| (RHSA-2021:2725) kernel security and bug fix update kernel-tools-libs-devel-3.10.0-1160.36.2.el7.x86_64.rpm | Linux |
| (RHSA-2021:2725) kernel security and bug fix update perf-3.10.0-1160.36.2.el7.x86_64.rpm | Linux |
| (RHSA-2021:2725) kernel security and bug fix update python-perf-3.10.0-1160.36.2.el7.x86_64.rpm | Linux |
| (RHSA-2021:4356) kernel security, bug fix, and enhancement update bpftool-4.18.0-348.el8.x86_64.rpm | Linux |
| (RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-4.18.0-348.el8.x86_64.rpm | Linux |
| (RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-abi-stablelists-4.18.0-348.el8.noarch.rpm | Linux |
| (RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-core-4.18.0-348.el8.x86_64.rpm | Linux |
| (RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-cross-headers-4.18.0-348.el8.x86_64.rpm | Linux |
| (RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-debug-4.18.0-348.el8.x86_64.rpm | Linux |
| (RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-debug-core-4.18.0-348.el8.x86_64.rpm | Linux |
| (RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-debug-devel-4.18.0-348.el8.x86_64.rpm | Linux |
| (RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-debug-modules-4.18.0-348.el8.x86_64.rpm | Linux |
| (RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-debug-modules-extra-4.18.0-348.el8.x86_64.rpm | Linux |
| (RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-devel-4.18.0-348.el8.x86_64.rpm | Linux |
| (RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-doc-4.18.0-348.el8.noarch.rpm | Linux |
| (RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-headers-4.18.0-348.el8.x86_64.rpm | Linux |
| (RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-modules-4.18.0-348.el8.x86_64.rpm | Linux |
| (RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-modules-extra-4.18.0-348.el8.x86_64.rpm | Linux |
| (RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-tools-4.18.0-348.el8.x86_64.rpm | Linux |
| (RHSA-2021:4356) kernel security, bug fix, and enhancement update kernel-tools-libs-4.18.0-348.el8.x86_64.rpm | Linux |
| (RHSA-2021:4356) kernel security, bug fix, and enhancement update perf-4.18.0-348.el8.x86_64.rpm | Linux |
| (RHSA-2021:4356) kernel security, bug fix, and enhancement update python3-perf-4.18.0-348.el8.x86_64.rpm | Linux |
| SUSE-SU-2021:3748-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-4.12.14-122.98.1.x86_64.rpm | Linux |
| SUSE-SU-2021:3748-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-base-4.12.14-122.98.1.x86_64.rpm | Linux |
| SUSE-SU-2021:3748-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-base-debuginfo-4.12.14-122.98.1.x86_64.rpm | Linux |
| SUSE-SU-2021:3748-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-debuginfo-4.12.14-122.98.1.x86_64.rpm | Linux |
| SUSE-SU-2021:3748-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-debugsource-4.12.14-122.98.1.x86_64.rpm | Linux |
| SUSE-SU-2021:3748-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-devel-4.12.14-122.98.1.x86_64.rpm | Linux |
| SUSE-SU-2021:3748-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-devel-debuginfo-4.12.14-122.98.1.x86_64.rpm | Linux |
| SUSE-SU-2021:3748-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-devel-4.12.14-122.98.1.noarch.rpm | Linux |
| SUSE-SU-2021:3748-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-macros-4.12.14-122.98.1.noarch.rpm | Linux |
| SUSE-SU-2021:3748-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-source-4.12.14-122.98.1.noarch.rpm | Linux |
| SUSE-SU-2021:3748-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-syms-4.12.14-122.98.1.x86_64.rpm | Linux |
| SUSE-SU-2021:14849-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-default-extra-3.0.101-108.132.1.i586.rpm | Linux |
| SUSE-SU-2021:14849-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-default-extra-3.0.101-108.132.1.x86_64.rpm | Linux |
| SUSE-SU-2021:14849-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-pae-extra-3.0.101-108.132.1.i586.rpm | Linux |
| SUSE-SU-2021:14849-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-trace-extra-3.0.101-108.132.1.x86_64.rpm | Linux |
| SUSE-SU-2021:14849-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-xen-extra-3.0.101-108.132.1.i586.rpm | Linux |
| SUSE-SU-2021:14849-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-xen-extra-3.0.101-108.132.1.x86_64.rpm | Linux |
| Use After Free Vulnerability (CVE-2021-33033) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234