CVE-2021-3573

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

A use-after-free in function hci_sock_bound_ioctl() of the Linux kernel HCI subsystem was found in the way user calls ioct HCIUNBLOCKADDR or other way triggers race condition of the call hci_unregister_dev() together with one of the calls hci_sock_blacklist_add(), hci_sock_blacklist_del(), hci_get_conn_info(), hci_get_auth_info(). A privileged local user could use this flaw to crash the system or escalate their privileges on the system. This flaw affects the Linux kernel versions prior to 5.13-rc5.

References

https://bugzilla.redhat.com/show_bug.cgi?id=1966578

https://git.kernel.org/pub/scm/linux/kernel/git/bluetooth/bluetooth.git/commit/?id=e305509e678b3a4af2b3cfd410f409f7cdaabb52

https://www.openwall.com/lists/oss-security/2021/06/08/2

Details

Source: MITRE

Published: 2021-08-13

Updated: 2021-08-24

Type: CWE-362

Risk Information

CVSS v2

Base Score: 6.9

Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 3.4

Severity: MEDIUM

CVSS v3

Base Score: 6.4

Vector: CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 0.5

Severity: MEDIUM

Tenable Plugins

View all (40 total)

IDNameProductFamilySeverity
155425Oracle Linux 8 : kernel (ELSA-2021-4356)NessusOracle Linux Local Security Checks
high
155219RHEL 8 : kernel (RHSA-2021:4356)NessusRed Hat Local Security Checks
high
155172RHEL 8 : kernel-rt (RHSA-2021:4140)NessusRed Hat Local Security Checks
high
155145CentOS 8 : kernel (CESA-2021:4356)NessusCentOS Local Security Checks
high
155070CentOS 8 : kernel-rt (CESA-2021:4140)NessusCentOS Local Security Checks
high
154404EulerOS 2.0 SP3 : kernel (EulerOS-SA-2021-2588)NessusHuawei Local Security Checks
high
154210SUSE SLES12 Security Update : kernel (Live Patch 39 for SLE 12 SP3) (SUSE-SU-2021:3459-1)NessusSuSE Local Security Checks
high
154165Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2021-9485)NessusOracle Linux Local Security Checks
high
154163Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2021-9488)NessusOracle Linux Local Security Checks
high
154161SUSE SLES12 / SLES15 Security Update : kernel (Live Patch 16 for SLE 12 SP5) (SUSE-SU-2021:3443-1)NessusSuSE Local Security Checks
high
154160SUSE SLES15 Security Update : kernel (Live Patch 21 for SLE 15) (SUSE-SU-2021:3440-1)NessusSuSE Local Security Checks
high
154129SUSE SLES15 Security Update : kernel (Live Patch 23 for SLE 15) (SUSE-SU-2021:3401-1)NessusSuSE Local Security Checks
high
154095SUSE SLES12 / SLES15 Security Update : kernel (Live Patch 17 for SLE 15 SP2) (SUSE-SU-2021:3374-1)NessusSuSE Local Security Checks
high
154092SUSE SLES12 / SLES15 Security Update : kernel (Live Patch 18 for SLE 15 SP2) (SUSE-SU-2021:3361-1)NessusSuSE Local Security Checks
medium
154073SUSE SLES15 Security Update : kernel (Live Patch 25 for SLE 15) (SUSE-SU-2021:3371-1)NessusSuSE Local Security Checks
high
154068SUSE SLES15 Security Update : kernel (Live Patch 0 for SLE 15 SP3) (SUSE-SU-2021:3360-1)NessusSuSE Local Security Checks
high
153567Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2021-9458)NessusOracle Linux Local Security Checks
high
153559Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2021-9460)NessusOracle Linux Local Security Checks
high
153443Oracle Linux 7 / 8 : Unbreakable Enterprise kernel-container (ELSA-2021-9451)NessusOracle Linux Local Security Checks
medium
153442Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2021-9450)NessusOracle Linux Local Security Checks
medium
153271EulerOS 2.0 SP2 : kernel (EulerOS-SA-2021-2392)NessusHuawei Local Security Checks
high
153080EulerOS 2.0 SP5 : kernel (EulerOS-SA-2021-2336)NessusHuawei Local Security Checks
high
152774Ubuntu 20.04 LTS : Linux kernel vulnerabilities (USN-5050-1)NessusUbuntu Local Security Checks
medium
152665Ubuntu 20.04 LTS / 21.04 : Linux kernel vulnerabilities (USN-5046-1)NessusUbuntu Local Security Checks
medium
152640Ubuntu 16.04 LTS / 18.04 LTS : Linux kernel vulnerabilities (USN-5044-1)NessusUbuntu Local Security Checks
medium
152639Ubuntu 18.04 LTS : Linux kernel vulnerabilities (USN-5045-1)NessusUbuntu Local Security Checks
medium
151996SUSE SLES15 Security Update : kernel (SUSE-SU-2021:2426-1)NessusSuSE Local Security Checks
high
151921Ubuntu 20.04 LTS : Linux kernel (OEM) vulnerabilities (USN-5015-1)NessusUbuntu Local Security Checks
high
151897Slackware 14.2 : Slackware 14.2 kernel (SSA:2021-202-01)NessusSlackware Local Security Checks
high
151793Amazon Linux 2 : kernel (ALAS-2021-1685)NessusAmazon Linux Local Security Checks
medium
151760SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2021:2352-1)NessusSuSE Local Security Checks
medium
151754openSUSE 15 Security Update : kernel (openSUSE-SU-2021:2305-1)NessusSuSE Local Security Checks
medium
151691openSUSE 15 Security Update : kernel (openSUSE-SU-2021:2352-1)NessusSuSE Local Security Checks
medium
151652SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2021:2325-1)NessusSuSE Local Security Checks
high
151617SUSE SLES15 Security Update : kernel (SUSE-SU-2021:2303-1)NessusSuSE Local Security Checks
high
151616SUSE SLES15 Security Update : kernel (SUSE-SU-2021:2305-1)NessusSuSE Local Security Checks
medium
150985Debian DLA-2689-1 : linux security updateNessusDebian Local Security Checks
high
150984Debian DLA-2690-1 : linux-4.19 security updateNessusDebian Local Security Checks
high
150445Photon OS 3.0: Linux PHSA-2021-3.0-0251NessusPhotonOS Local Security Checks
medium
150443Photon OS 4.0: Linux PHSA-2021-4.0-0041NessusPhotonOS Local Security Checks
medium