PT-2021-4254 · Linux+8 · Linux Kernel+8

Haoxiong

+2

·

Published

2021-05-17

·

Updated

2023-02-12

·

CVE-2021-3564

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions 3.13 and later
Description A double-free memory corruption flaw was found in the Linux kernel's HCI device initialization subsystem. This issue arises when a user attaches a malicious HCI TTY Bluetooth device. A local user could exploit this flaw to crash the system.
Recommendations For Linux kernel versions 3.13 and later, update to a version that includes a fix for this issue. As a temporary workaround, consider restricting access to the hci dev do open() function to minimize the risk of exploitation. Avoid using malicious HCI TTY Bluetooth devices to prevent system crashes.

Exploit

Fix

Double Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-415

Related Identifiers

ALSA-2021:4356
ALT-PU-2021-1989
ALT-PU-2021-1990
ALT-PU-2021-2010
ALT-PU-2021-2012
ALT-PU-2021-2042
ALT-PU-2021-2370
ALT-PU-2021-2672
ALT-PU-2021-2677
ALT-PU-2021-2678
ALT-PU-2021-2737
ALT-PU-2021-2751
ALT-PU-2022-1240
AZL-34858
AZL-6573
BDU:2021-04862
CESA-2021_4140
CESA-2021_4356
CESA-2022_0620
CVE-2021-3564
DLA-2689-1
DLA-2690-1
MGASA-2021-0224
MGASA-2021-0258
OESA-2021-1176
OPENSUSE-SU-2022:0366-1
OPENSUSE-SU-2022_0366-1
RHSA-2021:4140
RHSA-2021:4356
RHSA-2021_4140
RHSA-2021_4356
RHSA-2022:0620
RHSA-2022:0622
RHSA-2022_0620
RHSA-2022_0622
SUSE-SU-2022:0362-1
SUSE-SU-2022:0364-1
SUSE-SU-2022:0366-1
SUSE-SU-2022:0367-1
SUSE-SU-2022:0371-1
SUSE-SU-2022:0372-1
SUSE-SU-2022:0477-1
SUSE-SU-2022:0555-1
USN-5015-1
USN-5044-1
USN-5045-1
USN-5046-1
USN-5050-1
USN-5299-1
USN-5343-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Suse
Ubuntu