CVE-2021-29626

MEDIUM

FreeBSD < 11.4-RELEASE p9, 12.2-RELEASE p6, 13.0-RC5 p1 - Unauthenticated Use-After-Free in Shared Memory Page Mappings

Title source: llm

Description

In FreeBSD 13.0-STABLE before n245117, 12.2-STABLE before r369551, 11.4-STABLE before r369559, 13.0-RC5 before p1, 12.2-RELEASE before p6, and 11.4-RELEASE before p9, copy-on-write logic failed to invalidate shared memory page mappings between multiple processes allowing an unprivileged process to maintain a mapping after it is freed, allowing the process to read private data belonging to other processes or the kernel.

References (2)

Core 2

Core References

Vendor Advisory x_refsource_misc

https://security.FreeBSD.org/advisories/FreeBSD-SA-21:08.vm.asc

Third Party Advisory x_refsource_confirm

https://security.netapp.com/advisory/ntap-20210423-0008/

Scores

CVSS v3 5.5

EPSS 0.0006

EPSS Percentile 18.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Details

CWE

CWE-416

Status published

Products (4)

freebsd/freebsd 11.4 (9 CPE variants)

freebsd/freebsd 12.2 (3 CPE variants)

freebsd/freebsd 13.0 beta1 (9 CPE variants)

freebsd/freebsd < 11.4

Published Apr 07, 2021

Tracked Since Feb 18, 2026