CVE-2021-3573

CVE Details

Release Date:	2021-08-13
Impact:	None	What is this?

Description

A use-after-free in function hci_sock_bound_ioctl() of the Linux kernel HCI subsystem was found in the way user calls ioct HCIUNBLOCKADDR or other way triggers race condition of the call hci_unregister_dev() together with one of the calls hci_sock_blacklist_add(), hci_sock_blacklist_del(), hci_get_conn_info(), hci_get_auth_info(). A privileged local user could use this flaw to crash the system or escalate their privileges on the system. This flaw affects the Linux kernel versions prior to 5.13-rc5.

See more information about CVE-2021-3573 from MITRE CVE dictionary and NIST NVD

NOTE: The following CVSS metrics and score provided are preliminary and subject to review.

CVSS v3 metrics

Base Score:	6.4
Vector String:	CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Version:	3.0
Attack Vector:	Local
Attack Complexity:	High
Privileges Required:	High
User Interaction:	None
Scope:	Unchanged
Confidentiality Impact:	High
Integrity Impact:	High
Availability Impact:	High

Errata information

Platform	Errata	Release Date
Oracle Linux version 6 (kernel-uek)	ELSA-2022-9348	2022-05-03
Oracle Linux version 7 (kernel)	ELSA-2022-0620	2022-02-23
Oracle Linux version 7 (kernel-uek)	ELSA-2021-9450	2021-09-16
Oracle Linux version 7 (kernel-uek)	ELSA-2021-9460	2021-09-22
Oracle Linux version 7 (kernel-uek)	ELSA-2021-9485	2021-10-14
Oracle Linux version 7 (kernel-uek)	ELSA-2022-9348	2022-05-03
Oracle Linux version 7 (kernel-uek-container)	ELSA-2021-9451	2021-09-16
Oracle Linux version 7 (kernel-uek-container)	ELSA-2021-9458	2021-09-22
Oracle Linux version 7 (kernel-uek-container)	ELSA-2021-9488	2021-10-14
Oracle Linux version 8 (kernel)	ELSA-2021-4356	2021-11-16
Oracle Linux version 8 (kernel-uek)	ELSA-2021-9450	2021-09-16
Oracle Linux version 8 (kernel-uek-container)	ELSA-2021-9451	2021-09-16
Oracle VM version 3 (kernel-uek)	OVMSA-2022-0014	2022-05-03