Wind River Support Network

HomeDefectsLINCD-7807
Fixed

LINCD-7807 : Security Advisory - linux - CVE-2021-4202

Created: Jan 11, 2022    Updated: Jan 26, 2022
Resolved Date: Jan 12, 2022
Found In Version: 10.20.6.0
Fix Version: 10.22.04.0
Severity: Standard
Applicable for: Wind River Linux CD
Component/s: Kernel

Description

kernel: Race condition in nci_request() leads to use after free while the device is getting removed

https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=86cdf8e38792545161dbe3350a7eced558ba4d15
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=48b71a9e66c2eab60564b1b1c85f4928ed04e406
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=3e3b5dfcd16a3e254aab61bd1e8c417dd4503102
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=aedddb4e45b34426cfbfa84454b6f203712733c5

CREATE(Triage):(User=admin) CVE-2021-4202 (https://nvd.nist.gov/vuln/detail/CVE-2021-4202)

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube