Vulnerabilities > CVE-2021-3744

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH

Summary

A memory leak flaw was found in the Linux kernel in the ccp_run_aes_gcm_cmd() function in drivers/crypto/ccp/ccp-ops.c, which allows attackers to cause a denial of service (memory consumption). This vulnerability is similar with the older CVE-2019-18808.

Vulnerable Configurations

Part Description Count
OS
Linux
4982
OS
Fedoraproject
3
OS
Debian
2
OS
Redhat
12
Application
Redhat
7
Application
Oracle
3

References