CVE-2021-29628 Information

Description

In FreeBSD 13.0-STABLE before n245764-876ffe28796c 12.2-STABLE before r369857 13.0-RELEASE before p1 and 12.2-RELEASE before p7 a system call triggering a fault could cause SMAP protections to be disabled for the duration of the system call. This weakness could be combined with other kernel bugs to craft an exploit.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Reference

https://security.FreeBSD.org/advisories/FreeBSD-SA-21:11.smap.asc https://security.netapp.com/advisory/ntap-20210713-0002/

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

NONE

Availability Impact

HIGH

Base Score

NONE

Base Severity

7.5