CVE-2022-49258

crypto: ccree - Fix use after free in cc_cipher_exit()

Severity Score

"-"

*CVSS v-

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

MITRE

In the Linux kernel, the following vulnerability has been resolved: crypto: ccree - Fix use after free in cc_cipher_exit() kfree_sensitive(ctx_p->user.key) will free the ctx_p->user.key. But
ctx_p->user.key is still used in the next line, which will lead to a
use after free. We can call kfree_sensitive() after dev_dbg() to avoid the uaf.

*Credits: N/A

CVSS Scores

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2025-02-26 CVE Reserved
2025-02-26 CVE Published
2025-02-26 CVE Updated
---------- EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (6)

URL	Tag	Source
https://git.kernel.org/stable/c/63ee04c8b491ee148489347e7da9fbfd982ca2bb	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/c93017c8d5ebf55a4e453ac7c84cc84cf92ab570	2022-04-08
https://git.kernel.org/stable/c/335bf1fc74f775a8255257aa3e33763f2257b676	2022-04-08
https://git.kernel.org/stable/c/25c358efee5153dfd240d4e0d3169d5bebe9cacd	2022-04-08
https://git.kernel.org/stable/c/cffb5382bd8d3cf21b874ab5b84bf7618932286b	2022-04-08
https://git.kernel.org/stable/c/3d950c34074ed74d2713c3856ba01264523289e6	2022-03-09

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.17 < 5.10.110 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.17 < 5.10.110"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.17 < 5.15.33 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.17 < 5.15.33"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.17 < 5.16.19 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.17 < 5.16.19"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.17 < 5.17.2 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.17 < 5.17.2"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.17 < 5.18 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.17 < 5.18"		en		Affected