Wind River Support Network

HomeDefectsLIN1021-2417
Fixed

LIN1021-2417 : Security Advisory - linux - CVE-2021-4202

Created: Jan 11, 2022    Updated: Mar 26, 2022
Resolved Date: Jan 12, 2022
Found In Version: 10.21.20.1
Fix Version: 10.21.20.8
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Kernel

Description

A use-after-free flaw was found in nci_request in net/nfc/nci/core.c in NFC Controller Interface (NCI) in the Linux kernel. This flaw could allow a local attacker with user privileges to cause a data race problem while the device is getting removed, leading to a privilege escalation problem.

https://nvd.nist.gov/vuln/detail/CVE-2021-4202

CVEs


Live chat
Online