Уязвимость CVE-2021-3640: Информация
Описание
A flaw use-after-free in function sco_sock_sendmsg() of the Linux kernel HCI subsystem was found in the way user calls ioct UFFDIO_REGISTER or other way triggers race condition of the call sco_conn_del() together with the call sco_sock_sendmsg() with the expected controllable faulting memory page. A privileged local user could use this flaw to crash the system or escalate their privileges on the system.
Важность: HIGH (7,0) Вектор: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Исправленные пакеты
Имя пакета | Ветка | Исправлено в версии | Версия в репозитории | Errata ID | № Задания | Состояние |
|---|---|---|---|---|---|---|
| kernel-image-elbrus-def | sisyphus_e2k | 5.4.163-alt2.23.1 | 5.10.210-alt1.20.1 | ALT-PU-2021-4495-1 | - | Исправлено |
| kernel-image-mp | sisyphus | 5.15.4-alt1 | 6.8.4-alt1 | ALT-PU-2021-3330-1 | 290389 | Исправлено |
| kernel-image-mp | p10 | 6.1.19-alt1 | 6.1.19-alt1 | ALT-PU-2023-4894-3 | 327092 | Исправлено |
| kernel-image-rpi-def | sisyphus | 5.15.25-alt1 | 5.15.92-alt2 | ALT-PU-2022-1419-1 | 296090 | Исправлено |
| kernel-image-rpi-def | p10 | 5.15.25-alt1 | 5.15.92-alt2 | ALT-PU-2022-1421-1 | 296181 | Исправлено |
| kernel-image-rpi-un | sisyphus | 5.15.6-alt1 | 6.6.23-alt1 | ALT-PU-2021-3563-1 | 292137 | Исправлено |
| kernel-image-rpi-un | p10 | 5.15.6-alt1 | 6.1.77-alt1 | ALT-PU-2021-3573-1 | 292365 | Исправлено |
| kernel-image-rt | sisyphus | 6.1.28-alt1.rt10 | 6.1.83-alt1.rt28 | ALT-PU-2023-1814-1 | 320645 | Исправлено |
| kernel-image-std-debug | sisyphus | 5.10.80-alt1 | 6.1.87-alt1 | ALT-PU-2021-3303-1 | 290051 | Исправлено |
| kernel-image-std-def | sisyphus | 5.10.80-alt1 | 6.1.87-alt1 | ALT-PU-2021-3304-1 | 290052 | Исправлено |
| kernel-image-std-def | p10 | 5.10.82-alt1 | 5.10.213-alt1 | ALT-PU-2021-3469-1 | 290646 | Исправлено |
| kernel-image-std-def | p9 | 5.4.171-alt1 | 5.4.274-alt1 | ALT-PU-2022-1054-1 | 293350 | Исправлено |
| kernel-image-std-def | p8 | 4.9.291-alt0.M80P.1 | 4.9.337-alt0.M80P.1 | ALT-PU-2021-3393-1 | 290653 | Исправлено |
| kernel-image-std-def | c9f2 | 5.10.83-alt0.c9f.2 | 5.10.214-alt0.c9f.2 | ALT-PU-2021-3485-1 | 291069 | Исправлено |
| kernel-image-un-def | sisyphus | 5.14.20-alt1 | 6.6.28-alt1 | ALT-PU-2021-3305-1 | 290059 | Исправлено |
| kernel-image-un-def | sisyphus_riscv64 | 5.16.8-alt1.rv64 | 6.6.28-alt1.0.port | ALT-PU-2022-3985-1 | - | Исправлено |
| kernel-image-un-def | p10 | 5.14.20-alt1 | 6.1.85-alt1 | ALT-PU-2021-3341-1 | 290060 | Исправлено |
| kernel-image-un-def | p9 | 5.10.80-alt1 | 5.10.215-alt1 | ALT-PU-2021-3337-1 | 290056 | Исправлено |
| kernel-image-un-def | p8 | 4.19.218-alt0.M80P.1 | 4.19.310-alt0.M80P.1 | ALT-PU-2021-3394-1 | 290651 | Исправлено |
| kernel-image-un-def | c10f1 | 5.14.20-alt1 | 6.1.85-alt0.c10f.1 | ALT-PU-2021-3341-1 | 290060 | Исправлено |
| linux-tools | sisyphus_riscv64 | 5.16-alt1 | 6.8-alt2 | ALT-PU-2022-3659-1 | - | Исправлено |
| linux-tools | p10 | 6.1-alt0.p10.1 | 6.1-alt0.p10.1 | ALT-PU-2023-4282-2 | 323593 | Исправлено |
Ссылки на рекомендации, решения и инструменты
Ссылка | Ресурс |
|---|---|
| https://github.com/torvalds/linux/commit/99c23da0eed4fd20cae8243f2b51e10e66aa0951 |
|
| https://bugzilla.redhat.com/show_bug.cgi?id=1980646 |
|
| https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/net/bluetooth/sco.c?h=v5.16&id=99c23da0eed4fd20cae8243f2b51e10e66aa0951 |
|
| https://www.openwall.com/lists/oss-security/2021/07/22/1 |
|
| https://ubuntu.com/security/CVE-2021-3640 |
|
| [debian-lts-announce] 20220309 [SECURITY] [DLA 2941-1] linux-4.19 security update |
|
| [debian-lts-announce] 20220309 [SECURITY] [DLA 2940-1] linux security update |
|
| DSA-5096 |
|
| https://security.netapp.com/advisory/ntap-20220419-0003/ |
|