crypto/pcrypt.c in the Linux kernel before 4.14.13 mishandles freeing instances, allowing a local user able to access the AF_ALG-based AEAD interface (CONFIG_CRYPTO_USER_API_AEAD) and pcrypt (CONFIG_CRYPTO_PCRYPT) to cause a denial of service (kfree of an incorrect pointer) or possibly have unspecified other impact by executing a crafted sequence of system calls.
The product attempts to return a memory resource to the system, but it calls the wrong release function or calls the appropriate release function incorrectly.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Linux_kernel | Linux | 4.2 (including) | 4.4.111 (excluding) |
Linux_kernel | Linux | 4.5 (including) | 4.9.76 (excluding) |
Linux_kernel | Linux | 4.10 (including) | 4.14.13 (excluding) |
This weakness can take several forms, such as: