In the Linux kernel 5.11 through 5.12.2, isotp_setsockopt in net/can/isotp.c allows privilege escalation to root by leveraging a use-after-free. (This does not affect earlier versions that lack CAN ISOTP SF_BROADCAST support.)
References
Configurations
History
25 Mar 2024, 01:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
07 Nov 2023, 03:35
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
07 Sep 2021, 22:03
Type | Values Removed | Values Added |
---|---|---|
References |
|
03 Jun 2021, 13:32
Type | Values Removed | Values Added |
---|---|---|
References | (MLIST) http://www.openwall.com/lists/oss-security/2021/05/28/1 - Mailing List, Patch, Third Party Advisory |
28 May 2021, 21:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
26 May 2021, 19:45
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:* |
|
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HD3NJBG25AADVGPRC63RX2JOQBMPSWK4/ - Mailing List, Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/73D53S4IZFPFQMRABMXXLW4AJK3EULDX/ - Mailing List, Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GI7Z7UBWBGD3ABNIL2DC7RQDCGA4UVQW/ - Mailing List, Third Party Advisory |
20 May 2021, 04:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
19 May 2021, 20:00
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | |
CWE | CWE-416 | |
CVSS |
v2 : v3 : |
v2 : 7.2
v3 : 7.8 |
References | (MLIST) http://www.openwall.com/lists/oss-security/2021/05/14/1 - Mailing List, Third Party Advisory | |
References | (MLIST) http://www.openwall.com/lists/oss-security/2021/05/12/1 - Mailing List, Third Party Advisory | |
References | (MISC) https://www.openwall.com/lists/oss-security/2021/05/11/16 - Mailing List, Third Party Advisory | |
References | (MLIST) http://www.openwall.com/lists/oss-security/2021/05/13/2 - Mailing List, Third Party Advisory |
14 May 2021, 12:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
14 May 2021, 03:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
12 May 2021, 06:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
11 May 2021, 23:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-05-11 23:15
Updated : 2024-03-25 01:15
NVD link : CVE-2021-32606
Mitre link : CVE-2021-32606
CVE.ORG link : CVE-2021-32606
JSON object : View
Products Affected
linux
- linux_kernel
fedoraproject
- fedora
CWE
CWE-416
Use After Free