THREATINT

We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Fathom (Privacy friendly web analytics)
Zendesk (Helpdesk and Chat)

Ok

Home | EN
Support
CVE
PUBLISHED

CVE-2021-47087

tee: optee: Fix incorrect page free bug

AssignerLinux
Reserved2024-02-29
Published2024-03-04
Updated2024-06-04

Description

In the Linux kernel, the following vulnerability has been resolved: tee: optee: Fix incorrect page free bug Pointer to the allocated pages (struct page *page) has already progressed towards the end of allocation. It is incorrect to perform __free_pages(page, order) using this pointer as we would free any arbitrary pages. Fix this by stop modifying the page pointer.

Product status

Default status
unaffected

3c712f14d8a9 before 806142c805ca
affected

1340dc3fb75e before ad338d825e3f
affected

ec185dd3ab25 before 91e94e42f6fc
affected

ec185dd3ab25 before 18549bf4b21c
affected

Default status
affected

5.14
affected

Any version before 5.14
unaffected

5.4.169
unaffected

5.10.89
unaffected

5.15.12
unaffected

5.16
unaffected

References

https://git.kernel.org/stable/c/806142c805cacd098e61bdc0f72c778a2389fe4a

https://git.kernel.org/stable/c/ad338d825e3f7b96ee542bf313728af2d19fe9ad

https://git.kernel.org/stable/c/91e94e42f6fc49635f1a16d8ae3f79552bcfda29

https://git.kernel.org/stable/c/18549bf4b21c739a9def39f27dcac53e27286ab5

cve.org CVE-2021-47087

nvd.nist.gov CVE-2021-47087

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2021-47087
Find us on
Data Privacy
Terms of Use
Logo BSI Allianz für Cyber-Sicherheit
© Copyright 2024 THREATINT. Made in Cyprus with +