cbcvebase.
CVE-2021-3752
published 2022-02-16

CVE-2021-3752: A use-after-free flaw was found in the Linux kernel’s Bluetooth subsystem in the way user calls connect to the socket and disconnect simultaneously due to a…

high7.1CVSS 3.1
AVAACHPRLUINSUCHIHAH
A use-after-free flaw was found in the Linux kernel’s Bluetooth subsystem in the way user calls connect to the socket and disconnect simultaneously due to a race condition. This flaw allows a user to crash the system or escalate their privileges. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.

Affected

30 ranges· showing 25
VendorProductVersion rangeFixed in
debiandebian_linux
debiandebian_linux
debianlinux< linux 5.15.3-1 (bookworm)linux 5.15.3-1 (bookworm)
fedoraprojectfedora
linuxlinux_kernel
linuxlinux_kernel>= 0 < 5.10.84-15.10.84-1
linuxlinux_kernel>= 0 < 5.15.3-15.15.3-1
linuxlinux_kernel>= 0 < 5.15.3-15.15.3-1
linuxlinux_kernel>= 0 < 5.15.3-15.15.3-1
linuxlinux_kernel>= 0 < 4.15.0-167.1754.15.0-167.175
linuxlinux_kernel>= 0 < 5.4.0-97.1105.4.0-97.110
linuxlinux_kernel>= 0 < 5.4.0-99.1125.4.0-99.112
linuxlinux_kernel>= 2.6.12 < 4.4.2934.4.293
linuxlinux_kernel>= 4.10 < 4.14.2564.14.256
linuxlinux_kernel>= 4.15 < 4.19.2184.19.218
linuxlinux_kernel>= 4.20 < 5.4.1605.4.160
linuxlinux_kernel>= 4.5 < 4.9.2914.9.291
linuxlinux_kernel>= 5.11 < 5.14.195.14.19
linuxlinux_kernel>= 5.15 < 5.15.35.15.3
linuxlinux_kernel>= 5.5 < 5.10.805.10.80
msrccm1_kernel_5.10.102.1-1_on_cbl_mariner_1.0
oraclecommunications_cloud_native_core_binding_support_function
oraclecommunications_cloud_native_core_network_exposure_function
oraclecommunications_cloud_native_core_policy
redhat3scale

CVSS provenance

nvdv3.17.1HIGHCVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
osv7.4HIGH