#VU67416 Use-after-free in wayland - CVE-2021-3782


Vulnerability identifier: #VU67416

Vulnerability risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-3782

CWE-ID: CWE-416

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
wayland
Other software / Other software solutions

Vendor: wayland.freedesktop.org

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error caused by incorrectly handled reference counting
certain objects. A local user can perform a denial of service (DoS) attack against the Wayland compositor or execute arbitrary code with elevated privileges.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

wayland: 1.0.0 - 1.20.92

External links
https://gitlab.freedesktop.org/wayland/wayland/-/issues/224
https://gitlab.freedesktop.org/wayland/wayland/-/commit/b19488c7154b902354cb26a27f11415d7799b0b2

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Amazon Linux AMI update for wayland
Multiple vulnerabilities in Red Hat OpenShift Container Platform 4.13
SUSE update for wayland
Multiple vulnerabilities in Migration Toolkit for Runtimes
Multiple vulnerabilities in OpenShift Developer Tools and Services 4.12
Multiple vulnerabilities in OpenShift Developer Tools and Services 4.11
Anolis OS update for wayland
Red Hat Enterprise Linux 8 update for wayland
SUSE update for wayland
SUSE update for wayland