Vulnerability CVE-2021-32399: Information
Description
net/bluetooth/hci_request.c in the Linux kernel through 5.12.2 has a race condition for removal of the HCI controller.
Severity: HIGH (7.0) Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Fixed packages
Package name | Branch | Fixed in version | Version from repository | Errata ID | Task # | State |
---|---|---|---|---|---|---|
kernel-image-mp | sisyphus | 5.12.4-alt1 | 6.8.4-alt1 | ALT-PU-2021-1833-1 | 272140 | Fixed |
kernel-image-mp | p10 | 5.12.4-alt1 | 6.1.19-alt1 | ALT-PU-2021-1833-1 | 272140 | Fixed |
kernel-image-mp | p9 | 5.12.16-alt1 | 5.12.16-alt1 | ALT-PU-2021-3481-1 | 279859 | Fixed |
kernel-image-rpi-def | sisyphus | 5.15.25-alt1 | 5.15.92-alt2 | ALT-PU-2022-1419-1 | 296090 | Fixed |
kernel-image-rpi-def | p10 | 5.15.25-alt1 | 5.15.92-alt2 | ALT-PU-2022-1421-1 | 296181 | Fixed |
kernel-image-rpi-un | sisyphus | 5.12.6-alt1 | 6.6.23-alt1 | ALT-PU-2021-1888-1 | 273055 | Fixed |
kernel-image-rpi-un | p10 | 5.12.6-alt1 | 6.1.77-alt1 | ALT-PU-2021-1888-1 | 273055 | Fixed |
kernel-image-rpi-un | p9 | 5.12.6-alt1 | 5.12.17-alt1 | ALT-PU-2021-1896-1 | 273084 | Fixed |
kernel-image-rt | sisyphus | 6.1.28-alt1.rt10 | 6.1.83-alt1.rt28 | ALT-PU-2023-1814-1 | 320645 | Fixed |
kernel-image-std-def | sisyphus | 5.15.22-alt1 | 6.1.89-alt1 | ALT-PU-2022-1240-1 | 293878 | Fixed |
kernel-image-std-def | c7 | 4.4.277-alt0.M70C.1 | 4.4.277-alt0.M70C.1 | ALT-PU-2021-3033-1 | 281293 | Fixed |
kernel-image-un-def | sisyphus | 5.12.10-alt1 | 6.6.29-alt1 | ALT-PU-2021-1990-1 | 274393 | Fixed |
kernel-image-un-def | p10 | 5.12.10-alt1 | 6.1.85-alt1 | ALT-PU-2021-1990-1 | 274393 | Fixed |
kernel-image-un-def | c10f1 | 5.12.10-alt1 | 6.1.85-alt0.c10f.1 | ALT-PU-2021-1990-1 | 274393 | Fixed |
References to Advisories, Solutions, and Tools
Hyperlink | Resource |
---|---|
https://github.com/torvalds/linux/commit/e2cb6b891ad2b8caa9131e3be70f45243df82a80 |
|
https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=e2cb6b891ad2b8caa9131e3be70f45243df82a80 |
|
[oss-security] 20210511 CVE-2021-32399 Linux device detach race condition |
|
https://security.netapp.com/advisory/ntap-20210622-0006/ |
|
[debian-lts-announce] 20210623 [SECURITY] [DLA 2690-1] linux-4.19 security update |
|
[debian-lts-announce] 20210623 [SECURITY] [DLA 2689-1] linux security update |
|