Updated: 2025-08-20 02:25:43.055468
Description:
The mq_notify function in the GNU C Library (aka glibc) versions 2.32 and 2.33 has a use-after-free. It may use the notification thread attributes object (passed through its struct sigevent parameter) after it has been freed by the caller, leading to a denial of service (application crash) or possibly unspecified other impact.
| Links | NIST | CIRCL | RHEL | Ubuntu |
| Severity | Score | |
|---|---|---|
| CVSS Version 2.x | HIGH | 7.5 |
| CVSS Version 3.x | CRITICAL | 9.8 |
| OS name | Project name | Version | Score | Severity | Status | Errata | Last updated | Statement |
|---|---|---|---|---|---|---|---|---|
| CentOS 6 ELS | glibc | 2.12 | 9.8 | CRITICAL | Released | CLSA-2021:1629395067 | 2022-05-05 12:00:35 | |
| CentOS 8.4 ELS | glibc | 2.28 | 9.8 | CRITICAL | Released | CLSA-2022:1643727522 | 2022-02-01 14:46:36 | |
| CentOS 8.5 ELS | glibc | 2.28 | 9.8 | CRITICAL | Not Vulnerable | 2022-02-11 05:28:02 | ||
| CloudLinux 6 ELS | glibc | 2.12 | 9.8 | CRITICAL | Released | 2022-04-07 13:07:15 | ||
| Oracle Linux 6 ELS | glibc | 2.12 | 9.8 | CRITICAL | Released | CLSA-2021:1634922609 | 2022-01-28 17:18:43 | |
| Ubuntu 16.04 ELS | glibc | 2.23-0 | 9.8 | CRITICAL | Released | CLSA-2021:1635459187 | 2022-01-28 17:18:44 |