{"containers":{"cna":{"affected":[{"product":"kernel","vendor":"n/a","versions":[{"status":"affected","version":"Fixed in v5.15-rc4 and above."}]}],"descriptions":[{"lang":"en","value":"A memory leak flaw was found in the Linux kernel in the ccp_run_aes_gcm_cmd() function in drivers/crypto/ccp/ccp-ops.c, which allows attackers to cause a denial of service (memory consumption). This vulnerability is similar with the older CVE-2019-18808."}],"problemTypes":[{"descriptions":[{"cweId":"CWE-401","description":"CWE-401","lang":"en","type":"CWE"}]}],"providerMetadata":{"dateUpdated":"2022-07-25T16:36:48.000Z","orgId":"53f830b8-0a3f-465b-8143-3b8a9948e749","shortName":"redhat"},"references":[{"name":"[oss-security] 20210914 Disclosure: CVE-2021-3744: crypto: ccp - fix resource leaks in ccp_run_aes_gcm_cmd()","tags":["mailing-list","x_refsource_MLIST"],"url":"http://www.openwall.com/lists/oss-security/2021/09/14/1"},{"name":"FEDORA-2021-79cbbefebe","tags":["vendor-advisory","x_refsource_FEDORA"],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SYKURLXBB2555ASWMPDNMBUPD6AG2JKQ/"},{"name":"FEDORA-2021-ffda3d6fa1","tags":["vendor-advisory","x_refsource_FEDORA"],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7BLLVKYAIETEORUPTFO3TR3C33ZPFXQM/"},{"name":"FEDORA-2021-9dd76a1ed0","tags":["vendor-advisory","x_refsource_FEDORA"],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LAT3RERO6QBKSPJBNNRWY3D4NCGTFOS7/"},{"tags":["x_refsource_MISC"],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2000627"},{"tags":["x_refsource_MISC"],"url":"https://seclists.org/oss-sec/2021/q3/164"},{"tags":["x_refsource_MISC"],"url":"https://kernel.googlesource.com/pub/scm/linux/kernel/git/herbert/crypto-2.6/+/505d9dcb0f7ddf9d075e729523a33d38642ae680%5E%21/#F0"},{"tags":["x_refsource_MISC"],"url":"https://github.com/torvalds/linux/commit/505d9dcb0f7ddf9d075e729523a33d38642ae680"},{"name":"[debian-lts-announce] 20220309 [SECURITY] [DLA 2941-1] linux-4.19 security update","tags":["mailing-list","x_refsource_MLIST"],"url":"https://lists.debian.org/debian-lts-announce/2022/03/msg00012.html"},{"name":"DSA-5096","tags":["vendor-advisory","x_refsource_DEBIAN"],"url":"https://www.debian.org/security/2022/dsa-5096"},{"tags":["x_refsource_MISC"],"url":"https://www.oracle.com/security-alerts/cpujul2022.html"}]},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-03T17:01:08.447Z"},"title":"CVE Program Container","references":[{"name":"[oss-security] 20210914 Disclosure: CVE-2021-3744: crypto: ccp - fix resource leaks in ccp_run_aes_gcm_cmd()","tags":["mailing-list","x_refsource_MLIST","x_transferred"],"url":"http://www.openwall.com/lists/oss-security/2021/09/14/1"},{"name":"FEDORA-2021-79cbbefebe","tags":["vendor-advisory","x_refsource_FEDORA","x_transferred"],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SYKURLXBB2555ASWMPDNMBUPD6AG2JKQ/"},{"name":"FEDORA-2021-ffda3d6fa1","tags":["vendor-advisory","x_refsource_FEDORA","x_transferred"],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7BLLVKYAIETEORUPTFO3TR3C33ZPFXQM/"},{"name":"FEDORA-2021-9dd76a1ed0","tags":["vendor-advisory","x_refsource_FEDORA","x_transferred"],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LAT3RERO6QBKSPJBNNRWY3D4NCGTFOS7/"},{"tags":["x_refsource_MISC","x_transferred"],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2000627"},{"tags":["x_refsource_MISC","x_transferred"],"url":"https://seclists.org/oss-sec/2021/q3/164"},{"tags":["x_refsource_MISC","x_transferred"],"url":"https://kernel.googlesource.com/pub/scm/linux/kernel/git/herbert/crypto-2.6/+/505d9dcb0f7ddf9d075e729523a33d38642ae680%5E%21/#F0"},{"tags":["x_refsource_MISC","x_transferred"],"url":"https://github.com/torvalds/linux/commit/505d9dcb0f7ddf9d075e729523a33d38642ae680"},{"name":"[debian-lts-announce] 20220309 [SECURITY] [DLA 2941-1] linux-4.19 security update","tags":["mailing-list","x_refsource_MLIST","x_transferred"],"url":"https://lists.debian.org/debian-lts-announce/2022/03/msg00012.html"},{"name":"DSA-5096","tags":["vendor-advisory","x_refsource_DEBIAN","x_transferred"],"url":"https://www.debian.org/security/2022/dsa-5096"},{"tags":["x_refsource_MISC","x_transferred"],"url":"https://www.oracle.com/security-alerts/cpujul2022.html"}]}]},"cveMetadata":{"assignerOrgId":"53f830b8-0a3f-465b-8143-3b8a9948e749","assignerShortName":"redhat","cveId":"CVE-2021-3744","datePublished":"2022-03-04T15:55:17.000Z","dateReserved":"2021-08-27T00:00:00.000Z","dateUpdated":"2024-08-03T17:01:08.447Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}