CVE-2021-33574

high-risk

Published 2021-05-25

The mq_notify function in the GNU C Library (aka glibc) versions 2.32 and 2.33 has a use-after-free. It may use the notification thread attributes object (passed through its struct sigevent parameter) after it has been freed by the caller, leading to a denial of service (application crash) or possibly unspecified other impact.

Do I need to act?

0.12% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 9.8/10 Critical

NETWORK / LOW complexity

Affected Products (15)

Glibc

Fedora

Cloud Backup

E-Series Santricity Os Controller

Solidfire Baseboard Management Controller Firmware

H300S Firmware

H500S Firmware

H700S Firmware

H300E Firmware

H500E Firmware

H700E Firmware

H410S Firmware

Debian Linux

Affected Vendors

Debian Gnu Fedoraproject Netapp

References (14)

Mailing List https://lists.debian.org/debian-lts-announce/2022/10/msg00021.html

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro...

Third Party Advisory https://security.gentoo.org/glsa/202107-07

Third Party Advisory https://security.netapp.com/advisory/ntap-20210629-0005/

Exploit https://sourceware.org/bugzilla/show_bug.cgi?id=27896

Issue Tracking https://sourceware.org/bugzilla/show_bug.cgi?id=27896#c1

Mailing List https://lists.debian.org/debian-lts-announce/2022/10/msg00021.html

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro...

Third Party Advisory https://security.gentoo.org/glsa/202107-07

Third Party Advisory https://security.netapp.com/advisory/ntap-20210629-0005/

Exploit https://sourceware.org/bugzilla/show_bug.cgi?id=27896

Issue Tracking https://sourceware.org/bugzilla/show_bug.cgi?id=27896#c1

/ 100

high-risk

Severity 32/34 · Critical

Exploitability 1/34 · Minimal

Exposure 18/34 · Moderate