high
7.8
CWE
416
Advisory Published
CVE Published
Updated

CVE-2021-3347: Use After Free

First published: Thu Jan 28 2021(Updated: )

A flaw was found in the Linux kernel. A use after free issue in PI futex may lead to code execution. Upstream patch: <a href="https://github.com/torvalds/linux/commit/c64396cc36c6e60704ab06c1fb1c4a46179c9120">https://github.com/torvalds/linux/commit/c64396cc36c6e60704ab06c1fb1c4a46179c9120</a> References: <a href="https://www.openwall.com/lists/oss-security/2021/01/29/1">https://www.openwall.com/lists/oss-security/2021/01/29/1</a>

Credit: cve@mitre.org cve@mitre.org

Affected SoftwareAffected VersionHow to fix
redhat/kernel<0:2.6.32-754.41.2.el6
0:2.6.32-754.41.2.el6
redhat/kernel-rt<0:3.10.0-1160.31.1.rt56.1169.el7
0:3.10.0-1160.31.1.rt56.1169.el7
redhat/kernel-alt<0:4.14.0-115.36.1.el7a
0:4.14.0-115.36.1.el7a
redhat/kernel<0:3.10.0-1160.31.1.el7
0:3.10.0-1160.31.1.el7
redhat/kernel<0:3.10.0-327.100.1.el7
0:3.10.0-327.100.1.el7
redhat/kernel<0:3.10.0-514.90.2.el7
0:3.10.0-514.90.2.el7
redhat/kernel<0:3.10.0-693.90.2.el7
0:3.10.0-693.90.2.el7
redhat/kernel<0:3.10.0-957.78.2.el7
0:3.10.0-957.78.2.el7
redhat/kernel<0:3.10.0-1062.56.1.el7
0:3.10.0-1062.56.1.el7
redhat/kernel-rt<0:4.18.0-240.22.1.rt7.77.el8_3
0:4.18.0-240.22.1.rt7.77.el8_3
redhat/kernel<0:4.18.0-240.22.1.el8_3
0:4.18.0-240.22.1.el8_3
redhat/kernel<0:4.18.0-147.48.1.el8_1
0:4.18.0-147.48.1.el8_1
redhat/kernel-rt<0:4.18.0-193.51.1.rt13.101.el8_2
0:4.18.0-193.51.1.rt13.101.el8_2
redhat/kernel<0:4.18.0-193.51.1.el8_2
0:4.18.0-193.51.1.el8_2
Linux Linux kernel<=5.10.11
Debian Debian Linux=9.0
Debian Debian Linux=10.0
Fedoraproject Fedora=32
Fedoraproject Fedora=33
Google Android
IBM DRM<=2.0.6
debian/linux
5.10.223-1
5.10.226-1
6.1.115-1
6.1.112-1
6.11.5-1
6.11.7-1

Remedy

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=04b79c55201f02ffd675e1231d731365e335c307

Remedy

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=12bb3f7f1b03d5913b3f9d4236a488aa7774dfe9

Remedy

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=2156ac1934166d6deb6cd0f6ffc4c1076ec63697

Remedy

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=34b1a1ce1458f50ef27c54e28eb9b1947012907a

Remedy

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=6ccc84f917d33312eb2846bd7b567639f585ad6d

Remedy

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=c5cade200ab9a2a3be9e7f32a752c8d86b502ec7

Remedy

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=c64396cc36c6e60704ab06c1fb1c4a46179c9120

Remedy

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=f2dac39d93987f7de1e20b3988c8685523247ae2

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203