CVE-2021-29627

In FreeBSD 13.0-STABLE before n245050, 12.2-STABLE before r369525, 13.0-RC4 before p0, and 12.2-RELEASE before p6, listening socket accept filters implementing the accf_create callback incorrectly freed a process supplied argument string. Additional operations on the socket can lead to a double free or use after free.

CVSS v3 7.8 HIGH
CVSS v2.0 7.2 HIGH

7.8^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

7.2^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 3.9 / Impact : 10.0

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
https://security.FreeBSD.org/advisories/FreeBSD-SA-21:09.accept_filter.asc	Vendor Advisory
https://security.netapp.com/advisory/ntap-20210423-0007/	Third Party Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:freebsd:freebsd::::::::
	cpe:2.3:o:freebsd:freebsd:12.2:-::::::
	cpe:2.3:o:freebsd:freebsd:12.2:p1::::::
	cpe:2.3:o:freebsd:freebsd:12.2:p2::::::
	cpe:2.3:o:freebsd:freebsd:13.0:beta1::::::
	cpe:2.3:o:freebsd:freebsd:13.0:beta2::::::
	cpe:2.3:o:freebsd:freebsd:13.0:beta3::::::
	cpe:2.3:o:freebsd:freebsd:13.0:beta4::::::
	cpe:2.3:o:freebsd:freebsd:13.0:rc1::::::
	cpe:2.3:o:freebsd:freebsd:13.0:rc2::::::
	cpe:2.3:o:freebsd:freebsd:13.0:rc3::::::

History

27 May 2022, 19:06

Type	Values Removed	Values Added
References	~~(CONFIRM) https://security.netapp.com/advisory/ntap-20210423-0007/ -~~	(CONFIRM) https://security.netapp.com/advisory/ntap-20210423-0007/ - Third Party Advisory

23 Apr 2021, 06:15

Type	Values Removed	Values Added
References		(CONFIRM) https://security.netapp.com/advisory/ntap-20210423-0007/ -

16 Apr 2021, 14:20

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : 7.2 v3 : 7.8
CWE		CWE-415 CWE-416
References	~~(MISC) https://security.FreeBSD.org/advisories/FreeBSD-SA-21:09.accept_filter.asc -~~	(MISC) https://security.FreeBSD.org/advisories/FreeBSD-SA-21:09.accept_filter.asc - Vendor Advisory
CPE		cpe:2.3:o:freebsd:freebsd:13.0:beta1:::::: cpe:2.3:o:freebsd:freebsd:13.0:beta3:::::: cpe:2.3:o:freebsd:freebsd:13.0:beta4:::::: cpe:2.3:o:freebsd:freebsd:13.0:rc1:::::: cpe:2.3:o:freebsd:freebsd:13.0:rc2:::::: cpe:2.3:o:freebsd:freebsd:12.2:p2:::::: cpe:2.3:o:freebsd:freebsd:12.2:p1:::::: cpe:2.3:o:freebsd:freebsd:13.0:beta2:::::: cpe:2.3:o:freebsd:freebsd:13.0:rc3:::::: cpe:2.3:o:freebsd:freebsd:::::::: cpe:2.3:o:freebsd:freebsd:12.2:-::::::

07 Apr 2021, 15:38

Type	Values Removed	Values Added
New CVE

Information

Published : 2021-04-07 15:15

Updated : 2023-12-10 13:55

NVD link : CVE-2021-29627

Mitre link : CVE-2021-29627

CVE.ORG link : CVE-2021-29627

JSON object : View

Products Affected

freebsd

freebsd

CWE

CWE-415

Double Free

CWE-416

Use After Free

7.8 /10