PT-2021-4232 · Linux+9 · Linux Kernel+9

Lin Ma

·

Published

2021-04-23

·

Updated

2025-06-18

·

CVE-2021-32399

CVSS v3.1

7.0

High

VectorAV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions through 5.12.2
Description The issue is caused by a race condition in the net/bluetooth/hci request.c component of the Linux operating system, resulting from concurrent execution with shared resources and improper synchronization. This can allow an attacker to execute arbitrary code.
Recommendations For Linux kernel versions through 5.12.2, update to a version later than 5.12.2 to resolve the issue. As a temporary workaround, consider restricting access to the net/bluetooth/hci request.c component until a patch is available.

Exploit

Fix

Race Condition

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-362CWE-125

Related Identifiers

ALSA-2021:2714
ALT-PU-2021-1833
ALT-PU-2021-1888
ALT-PU-2021-1896
ALT-PU-2021-1990
ALT-PU-2021-3481
ALT-PU-2022-1240
ALT-PU-2022-1419
ALT-PU-2022-1421
ALT-PU-2023-1814
AZL-6560
BDU:2021-04838
CESA-2021_2714
CESA-2021_2715
CESA-2021_2716
CESA-2021_3327
CVE-2021-32399
DLA-2689-1
DLA-2690-1
MGASA-2021-0214
MGASA-2021-0215
OESA-2021-1176
OPENSUSE-SU-2021:0843-1
OPENSUSE-SU-2021:0947-1
OPENSUSE-SU-2021:1975-1
OPENSUSE-SU-2021:1977-1
OPENSUSE-SU-2021_0843-1
OPENSUSE-SU-2021_0947-1
OPENSUSE-SU-2021_1975-1
OPENSUSE-SU-2021_1977-1
RHSA-2021:2714
RHSA-2021:2715
RHSA-2021:2716
RHSA-2021:2736
RHSA-2021:3173
RHSA-2021:3181
RHSA-2021:3320
RHSA-2021:3321
RHSA-2021:3327
RHSA-2021:3328
RHSA-2021:3363
RHSA-2021:3375
RHSA-2021:3380
RHSA-2021:3381
RHSA-2021:3392
RHSA-2021:3399
RHSA-2021:3477
RHSA-2021:3522
RHSA-2021:3523
RHSA-2021:3725
RHSA-2021_2714
RHSA-2021_2715
RHSA-2021_3327
RHSA-2021_3328
RHSA-2022:0157
RHSA-2022_0157
RLSA-2021:2714
SUSE-SU-2021:14764-1
SUSE-SU-2021:1887-1
SUSE-SU-2021:1888-1
SUSE-SU-2021:1889-1
SUSE-SU-2021:1890-1
SUSE-SU-2021:1891-1
SUSE-SU-2021:1899-1
SUSE-SU-2021:1912-1
SUSE-SU-2021:1913-1
SUSE-SU-2021:1975-1
SUSE-SU-2021:1977-1
SUSE-SU-2021:2020-1
SUSE-SU-2021:2025-1
SUSE-SU-2021:2042-1
SUSE-SU-2021:2057-1
SUSE-SU-2021:2060-1
SUSE-SU-2021:2067-1
SUSE-SU-2021:2198-1
SUSE-SU-2021:2208-1
SUSE-SU-2021:2406-1
SUSE-SU-2021:2421-1
SUSE-SU-2021:2451-1
SUSE-SU-2021:2577-1
SUSE-SU-2021_14764-1
SUSE-SU-2021_2025-1
SUSE-SU-2021_2042-1
SUSE-SU-2021_2060-1
SUSE-SU-2025:01982-1
SUSE-SU-2025:01995-1
SUSE-SU-2025_01982-1
USN-4997-1
USN-4997-2
USN-5000-1
USN-5000-2
USN-5001-1
USN-5016-1
USN-5018-1
USN-5343-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Rocky Linux
Suse
Ubuntu