Vulnerability Details : CVE-2021-3939
Ubuntu-specific modifications to accountsservice (in patch file debian/patches/0010-set-language.patch) caused the fallback_locale variable, pointing to static storage, to be freed, in the user_change_language_authorized_cb function. This is reachable via the SetLanguage dbus function. This is fixed in versions 0.6.55-0ubuntu12~20.04.5, 0.6.55-0ubuntu13.3, 0.6.55-0ubuntu14.1.
Products affected by CVE-2021-3939
- cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:21.04:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:21.10:*:*:*:*:*:*:*
- Canonical » AccountsserviceVersions from including (>=) 0.6.55-0ubuntu12\~20.04 and before (<) 0.6.55-0ubuntu12\~20.05cpe:2.3:a:canonical:accountsservice:*:*:*:*:*:*:*:*
- Canonical » AccountsserviceVersions from including (>=) 0.6.55-0ubuntu13 and before (<) 0.6.55-0ubuntu13.3cpe:2.3:a:canonical:accountsservice:*:*:*:*:*:*:*:*
- Canonical » AccountsserviceVersions from including (>=) 0.6.55-0ubuntu14 and before (<) 0.6.55-0ubuntu14.1cpe:2.3:a:canonical:accountsservice:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2021-3939
0.04%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 10 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2021-3939
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.2
|
HIGH | AV:L/AC:L/Au:N/C:C/I:C/A:C |
3.9
|
10.0
|
NIST | |
7.8
|
HIGH | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
1.8
|
5.9
|
NIST | |
7.8
|
HIGH | CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H |
1.1
|
6.0
|
Canonical Ltd. |
CWE ids for CVE-2021-3939
-
The product calls free() on a pointer to memory that was not allocated using associated heap allocation functions such as malloc(), calloc(), or realloc().Assigned by: security@ubuntu.com (Secondary)
-
The product attempts to return a memory resource to the system, but it calls the wrong release function or calls the appropriate release function incorrectly.Assigned by: nvd@nist.gov (Primary)
References for CVE-2021-3939
-
https://ubuntu.com/security/notices/USN-5149-1
USN-5149-1: AccountsService vulnerability | Ubuntu security notices | UbuntuVendor Advisory
-
https://bugs.launchpad.net/ubuntu/+source/accountsservice/+bug/1950149
Error: Page not foundBroken Link
-
http://packetstormsecurity.com/files/172848/Ubuntu-accountsservice-Double-Free-Memory-Corruption.html
Ubuntu accountsservice Double-Free Memory Corruption ≈ Packet Storm
Jump to