What is CVE-2021-20232?

CVE-2021-20232 is a vulnerability in GnuTLS that could allow an attacker to cause a denial of service by exploiting a use-after-free issue in client_send_params in lib/ext/pre_shared_key.c.

How does CVE-2021-20232 impact GnuTLS?

CVE-2021-20232 could lead to memory corruption and other consequences, potentially resulting in a denial of service.

What is the severity of CVE-2021-20232?

CVE-2021-20232 has a severity rating of 7.4, which is considered high.

How can I fix CVE-2021-20232 in IBM QRadar SIEM version 7.5.0 GA?

To fix CVE-2021-20232 in IBM QRadar SIEM version 7.5.0 GA, you should apply the patch available at the following URL: [Patch URL]

How can I fix CVE-2021-20232 in IBM QRadar SIEM version 7.4.3 GA - 7.4.3 FP4?

To fix CVE-2021-20232 in IBM QRadar SIEM version 7.4.3 GA - 7.4.3 FP4, you should apply the patch available at the following URL: [Patch URL]

How can I fix CVE-2021-20232 in IBM QRadar SIEM version 7.3.3 GA - 7.3.3 FP10?

To fix CVE-2021-20232 in IBM QRadar SIEM version 7.3.3 GA - 7.3.3 FP10, you should apply the patch available at the following URL: [Patch URL]

Vulnerability/
CVE-2021-20232

critical

9.8

CWE

416

29/1/2021

12/3/2021

11/11/2022

CVE-2021-20232: Use After Free

First published: Fri Jan 29 2021(Updated: )

GnuTLS is vulnerable to a denial of service, caused by a use-after-free issue in client_send_params in lib/ext/pre_shared_key.c. By sending a specially-crafted request, an attacker could exploit this vulnerability to cause memory corruption and other consequences.

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
redhat/gnutls	<3.7.1	3.7.1
Gnu Gnutls	>=3.6.3<3.7.1
Redhat Enterprise Linux	=8.0
Fedoraproject Fedora	=34
IBM QRadar SIEM	<=7.5.0 GA
IBM QRadar SIEM	<=7.4.3 GA - 7.4.3 FP4
IBM QRadar SIEM	<=7.3.3 GA - 7.3.3 FP10

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

IBM-6574787

Frequently Asked Questions

What is CVE-2021-20232?
CVE-2021-20232 is a vulnerability in GnuTLS that could allow an attacker to cause a denial of service by exploiting a use-after-free issue in client_send_params in lib/ext/pre_shared_key.c.
How does CVE-2021-20232 impact GnuTLS?
CVE-2021-20232 could lead to memory corruption and other consequences, potentially resulting in a denial of service.
What is the severity of CVE-2021-20232?
CVE-2021-20232 has a severity rating of 7.4, which is considered high.
How can I fix CVE-2021-20232 in IBM QRadar SIEM version 7.5.0 GA?
To fix CVE-2021-20232 in IBM QRadar SIEM version 7.5.0 GA, you should apply the patch available at the following URL: [Patch URL]
How can I fix CVE-2021-20232 in IBM QRadar SIEM version 7.4.3 GA - 7.4.3 FP4?
To fix CVE-2021-20232 in IBM QRadar SIEM version 7.4.3 GA - 7.4.3 FP4, you should apply the patch available at the following URL: [Patch URL]
How can I fix CVE-2021-20232 in IBM QRadar SIEM version 7.3.3 GA - 7.3.3 FP10?
To fix CVE-2021-20232 in IBM QRadar SIEM version 7.3.3 GA - 7.3.3 FP10, you should apply the patch available at the following URL: [Patch URL]

agent/author
agent/description
agent/event
agent/first-publish-date
agent/last-modified-date
agent/references
agent/remedy
agent/severity
agent/softwarecombine
agent/tags
agent/type
agent/weakness
collector/ibm-support
collector/nvd-index
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2021-20232
agent/software-canonical-lookup
vendor/ibm
canonical/ibm qradar siem
version/ibm qradar siem/7.5.0 ga
version/ibm qradar siem/7.4.3 ga - 7.4.3 fp4
version/ibm qradar siem/7.3.3 ga - 7.3.3 fp10
vendor/gnu
canonical/gnu gnutls
version/gnu gnutls/3.6.3
vendor/redhat
canonical/redhat enterprise linux
version/redhat enterprise linux/8.0
vendor/fedoraproject
canonical/fedoraproject fedora
version/fedoraproject fedora/34
package-manager/redhat