CVE-2021-47087

HIGH

Linux Kernel 5.4.140-5.4.168 - Use-After-Free in OP-TEE Page Allocation

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: tee: optee: Fix incorrect page free bug Pointer to the allocated pages (struct page *page) has already progressed towards the end of allocation. It is incorrect to perform __free_pages(page, order) using this pointer as we would free any arbitrary pages. Fix this by stop modifying the page pointer.

References (4)

Core 4

Core References

Patch

https://git.kernel.org/stable/c/806142c805cacd098e61bdc0f72c778a2389fe4a

Patch

https://git.kernel.org/stable/c/ad338d825e3f7b96ee542bf313728af2d19fe9ad

Patch

https://git.kernel.org/stable/c/91e94e42f6fc49635f1a16d8ae3f79552bcfda29

Patch

https://git.kernel.org/stable/c/18549bf4b21c739a9def39f27dcac53e27286ab5

Scores

CVSS v3 7.8

EPSS 0.0023

EPSS Percentile 14.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-763

Status published

Products (16)

Linux/Linux < 5.14

Linux/Linux 1340dc3fb75ea69221f4f5dcb0cbace55ad0331c - ad338d825e3f7b96ee542bf313728af2d19fe9ad

Linux/Linux 255e17923b22cb7abd026e044416d61f6bd0eec0

Linux/Linux 3c712f14d8a9354a8807c15c64c8dd334499cc42 - 806142c805cacd098e61bdc0f72c778a2389fe4a

Linux/Linux 5.10.58 - 5.10.89

Linux/Linux 5.10.89 - 5.10.*

Linux/Linux 5.13.10 - 5.14

Linux/Linux 5.14

Linux/Linux 5.15.12 - 5.15.*

Linux/Linux 5.16

... and 6 more

Published Mar 04, 2024

Tracked Since Feb 18, 2026