CVE-2021-33034

Опубликовано: 14 мая 2021

Источник: debian

EPSS Низкий

Описание

In the Linux kernel before 5.12.4, net/bluetooth/hci_event.c has a use-after-free when destroying an hci_chan, aka CID-5c4c8c954409. This leads to writing an arbitrary value.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
linux	fixed	5.10.38-1		package
linux	fixed	4.19.194-1	buster	package

Примечания

https://git.kernel.org/linus/5c4c8c9544099bb9043a10a5318130a943e32fc3

EPSS

Процентиль: 31%

0.00114

Низкий

Связанные уязвимости

CVE-2021-33034

CVSS3: 7.8

ubuntu

около 4 лет назад

In the Linux kernel before 5.12.4, net/bluetooth/hci_event.c has a use-after-free when destroying an hci_chan, aka CID-5c4c8c954409. This leads to writing an arbitrary value.

CVE-2021-33034

CVSS3: 7.8

redhat

около 4 лет назад

In the Linux kernel before 5.12.4, net/bluetooth/hci_event.c has a use-after-free when destroying an hci_chan, aka CID-5c4c8c954409. This leads to writing an arbitrary value.

CVE-2021-33034

CVSS3: 7.8

nvd

около 4 лет назад

In the Linux kernel before 5.12.4, net/bluetooth/hci_event.c has a use-after-free when destroying an hci_chan, aka CID-5c4c8c954409. This leads to writing an arbitrary value.

CVE-2021-33034

CVSS3: 7.8

msrc

около 4 лет назад

Описание отсутствует

GHSA-3qpw-8jg3-xjrh

CVSS3: 7.8

github

около 3 лет назад

In the Linux kernel before 5.12.4, net/bluetooth/hci_event.c has a use-after-free when destroying an hci_chan, aka CID-5c4c8c954409. This leads to writing an arbitrary value.

EPSS

Процентиль: 31%

0.00114

Низкий