CVE-2021-46922

medium

Description

In the Linux kernel, the following vulnerability has been resolved: KEYS: trusted: Fix TPM reservation for seal/unseal The original patch 8c657a0590de ("KEYS: trusted: Reserve TPM for seal and unseal operations") was correct on the mailing list: https://lore.kernel.org/linux-integrity/[email protected]/ But somehow got rebased so that the tpm_try_get_ops() in tpm2_seal_trusted() got lost. This causes an imbalanced put of the TPM ops and causes oopses on TIS based hardware. This fix puts back the lost tpm_try_get_ops()

References

https://git.kernel.org/stable/c/bf84ef2dd2ccdcd8f2658476d34b51455f970ce4

https://git.kernel.org/stable/c/bf84ef2dd2ccdcd8f2658476d34b51455f970ce4

https://git.kernel.org/stable/c/9d5171eab462a63e2fbebfccf6026e92be018f20

https://git.kernel.org/stable/c/9d5171eab462a63e2fbebfccf6026e92be018f20

https://git.kernel.org/stable/c/39c8d760d44cb3fa0d67e8cd505df81cf4d80999

https://git.kernel.org/stable/c/39c8d760d44cb3fa0d67e8cd505df81cf4d80999

Details

Source: Mitre, NVD

Published: 2024-02-27

Updated: 2024-04-10

Risk Information

CVSS v2

Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium