A memory leak flaw was found in the Linux kernel in the ccprunaesgcmcmd() function in drivers/crypto/ccp/ccp-ops.c, which allows attackers to cause a denial of service (memory consumption). This vulnerability is similar with the older CVE-2019-18808.
[
{
"source": "https://github.com/torvalds/linux/commit/505d9dcb0f7ddf9d075e729523a33d38642ae680",
"id": "CVE-2021-3744-03a037ed",
"digest": {
"threshold": 0.9,
"line_hashes": [
"144011630521472651454124173303540049569",
"322686727078194435325566503098019389601",
"303520369278541359958614339471434286865",
"157493077748187444393124060732000743667",
"86363198120968311293735513518054851077",
"128800042935240405129347740889297156289",
"260793044739317350174153470169193933084",
"76955205677924200609007113581822783709",
"107697298120250685199064531513683983874",
"68661470283739263871390667357175942574",
"158910464061584724692263190743654470262",
"217758978013285614748504898493833285238",
"11714065337864841989774393942137730780",
"261675874428572449033907908865633721949",
"128730686669663088093005661369436873697",
"32994841324107883585964878640021426886",
"120416576042523101120091512565119279333",
"178174988987443686622789943547497005530",
"177117453784123439309414464425415719399",
"91517734562947462576794085769112561518"
]
},
"signature_version": "v1",
"deprecated": false,
"target": {
"file": "drivers/crypto/ccp/ccp-ops.c"
},
"signature_type": "Line"
},
{
"source": "https://github.com/torvalds/linux/commit/505d9dcb0f7ddf9d075e729523a33d38642ae680",
"id": "CVE-2021-3744-1a74d8cd",
"digest": {
"function_hash": "169312160436433933833392238663525345502",
"length": 5592.0
},
"signature_version": "v1",
"deprecated": false,
"target": {
"function": "ccp_run_aes_gcm_cmd",
"file": "drivers/crypto/ccp/ccp-ops.c"
},
"signature_type": "Function"
}
]