#VU67416 Use-after-free in wayland


Published: 2022-09-15

Vulnerability identifier: #VU67416

Vulnerability risk: Low

CVSSv3.1: 6.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-3782

CWE-ID: CWE-416

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
wayland
Other software / Other software solutions

Vendor: wayland.freedesktop.org

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error caused by incorrectly handled reference counting
certain objects. A local user can perform a denial of service (DoS) attack against the Wayland compositor or execute arbitrary code with elevated privileges.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

wayland: 1.0.0 - 1.20.92

External links
http://gitlab.freedesktop.org/wayland/wayland/-/issues/224
http://gitlab.freedesktop.org/wayland/wayland/-/commit/b19488c7154b902354cb26a27f11415d7799b0b2

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


SUSE update for wayland
Multiple vulnerabilities in Migration Toolkit for Runtimes
Multiple vulnerabilities in OpenShift Developer Tools and Services 4.12
Multiple vulnerabilities in OpenShift Developer Tools and Services 4.11
Red Hat Enterprise Linux 8 update for wayland
SUSE update for wayland
SUSE update for wayland
SUSE update for wayland
Ubuntu update for wayland
openEuler update for wayland