PT-2021-3824 · Linux+5 · Linux Kernel+5

Butt3Rflyh4Ck

·

Published

2021-05-31

·

Updated

2023-05-17

·

CVE-2021-38208

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.12.10
Description The issue is related to a NULL pointer dereference in the net/nfc/llcp sock.c component of the Linux kernel. It can be exploited by local unprivileged users to cause a denial of service by making a getsockname call after a certain type of failure of a bind call, such as when LLCP SAP MAX is used as SAP. This can lead to a denial of service (NULL pointer dereference and BUG).
Recommendations For Linux kernel versions prior to 5.12.10, update to version 5.12.10 or later to resolve the issue. As a temporary workaround, consider restricting access to the getsockname() function and the bind() call in the net/nfc/llcp sock.c component to minimize the risk of exploitation.

Exploit

Fix

DoS

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

ALT-PU-2021-1990
ALT-PU-2021-2026
ALT-PU-2021-2315
ALT-PU-2021-2326
ALT-PU-2021-2330
ALT-PU-2021-3481
ALT-PU-2022-1240
ALT-PU-2022-1419
ALT-PU-2022-1421
ALT-PU-2023-1814
AZL-6592
BDU:2021-04152
CVE-2021-38208
DLA-2689-1
DLA-2690-1
MGASA-2021-0257
MGASA-2021-0258
OESA-2021-1318
OPENSUSE-SU-2022_1676-1
OPENSUSE-SU-2022_1687-1
OPENSUSE-SU-2022_2111-1
SUSE-SU-2022:1651-1
SUSE-SU-2022:1668-1
SUSE-SU-2022:1669-1
SUSE-SU-2022:1676-1
SUSE-SU-2022:1686-1
SUSE-SU-2022:1687-1
SUSE-SU-2022:2077-1
SUSE-SU-2022:2082-1
SUSE-SU-2022:2083-1
SUSE-SU-2022:2103-1
SUSE-SU-2022:2111-1
SUSE-SU-2022_1651-1
SUSE-SU-2022_1669-1
SUSE-SU-2022_1676-1
SUSE-SU-2022_1686-1
SUSE-SU-2022_1687-1
USN-5050-1
USN-5343-1

Affected Products

Alt Linux
Astra Linux
Linuxmint
Linux Kernel
Suse
Ubuntu