Wind River Support Network

HomeDefectsLIN1021-539
Fixed

LIN1021-539 : Security Advisory - linux - CVE-2021-3587

Created: Jun 8, 2021    Updated: Jul 20, 2021
Resolved Date: Jul 12, 2021
Found In Version: 10.21.20.1
Fix Version: 10.21.20.1
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Kernel

Description

There is a null pointer dereference in llcp_sock_getname in net/nfc/llcp_sock.c reproduced in linux-5.13.0-rc2. An unprivileged user can trigger this bug and cause denial of service.


https://seclists.org/oss-sec/2021/q2/177
https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/commit/?id=4ac06a1e013c

CREATE(Triage):(User=admin) CVE-2021-3587 (https://nvd.nist.gov/vuln/detail/CVE-2021-3587)

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube