In the Linux kernel 5.11 through 5.12.2, isotp_setsockopt in net/can/isotp.c allows privilege escalation to root by leveraging a use-after-free. (This does not affect earlier versions that lack CAN ISOTP SF_BROADCAST support.)
References
Configurations
History
25 Mar 2024, 01:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
07 Nov 2023, 03:35
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2021-05-11 23:15
Updated : 2024-03-25 01:15
NVD link : CVE-2021-32606
Mitre link : CVE-2021-32606
CVE.ORG link : CVE-2021-32606
JSON object : View
Products Affected
linux
- linux_kernel
fedoraproject
- fedora
CWE
CWE-416
Use After Free