CVE-2021-3764

Summary

A memory leak flaw was found in the Linux kernel's ccp_run_aes_gcm_cmd() function that allows an attacker to cause a denial of service. The vulnerability is similar to the older CVE-2019-18808. The highest threat from this vulnerability is to system availability.

Affected Software

VendorProductVersion RangeStatus
n/aLinux KernelFixed in v5.15-rc4affected

Weaknesses

  • CWE-400: CWE-400 - Uncontrolled Resource Consumption

ADP Enrichment

CVE Program Container

Additional References

References