Memory Leak Vulnerability in Linux Kernel's ccp_run_aes_gcm_cmd() Function

Memory Leak Vulnerability in Linux Kernel's ccp_run_aes_gcm_cmd() Function

CVE-2021-3744 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

A memory leak flaw was found in the Linux kernel in the ccp_run_aes_gcm_cmd() function in drivers/crypto/ccp/ccp-ops.c, which allows attackers to cause a denial of service (memory consumption). This vulnerability is similar with the older CVE-2019-18808.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.