summaryrefslogtreecommitdiffstats
path: root/retired/CVE-2021-32606
blob: 6433359db9e99c37c85ca60093fb56d91aa9a640 (plain) (blame) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17

Description: net/can/isotp: race condition leads to local privilege escalation
References:
 https://www.openwall.com/lists/oss-security/2021/05/11/16
 https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/commit/?id=2b17c400aeb44daf041627722581ade527bb3c1d
Notes:
 carnil> Introduced by 921ca574cd38 ("can: isotp: add SF_BROADCAST
 carnil> support for functional addressing") in 5.11-rc1.
 carnil> In 5.10.102 was added both the introducing and fixing commit,
 carnil> so the issue was never present here.
Bugs:
upstream: released (5.13-rc4) [2b17c400aeb44daf041627722581ade527bb3c1d]
5.10-upstream-stable: N/A "Vulnerable code introduced later"
4.19-upstream-stable: N/A "Vulnerable code introduced later"
4.9-upstream-stable: N/A "Vulnerable code introduced later"
sid: N/A "Vulnerable code introduced later"
4.19-buster-security: N/A "Vulnerable code introduced later"
4.9-stretch-security: N/A "Vulnerable code introduced later"

© 2014-2024 Faster IT GmbH | imprint | privacy policy