AVG-1879 log

Package linux
Status Vulnerable
Severity Medium
Type multiple issues
Affected 5.13.4.arch2-1
Fixed Unknown
Current 5.13.4.arch2-1 [testing]
5.13.4.arch1-1 [core]
Ticket Create
Created Mon Apr 26 22:07:08 2021
Issue Severity Remote Type Description
CVE-2021-37159 Medium No Arbitrary code execution
hso_free_net_device in drivers/net/usb/hso.c in the Linux kernel through 5.13.4 calls unregister_netdev without checking for the NETREG_REGISTERED state,...
CVE-2021-31615 Low Yes Denial of service
Unencrypted Bluetooth Low Energy baseband links in Bluetooth Core Specifications 4.0 through 5.2 may permit an adjacent device to inject a crafted packet...
CVE-2021-3655 Medium Yes Information disclosure
A vulnerability was found in the Linux kernel. Missing size validations on inbound SCTP packets may allow the kernel to read uninitialized memory.
CVE-2021-3640 Medium No Arbitrary code execution
A use after free vulnerability has been found in sco_send_frame() in the Bluetooth stack of the Linux kernel, similar to CVE-2021-3573. A local attacker...
CVE-2021-3542 Medium No Privilege escalation
A heap-based buffer overflow security issue was found in the Linux kernel FireDTV media card driver, where the user calls the CA_SEND_MSG ioctl. This flaw...
CVE-2020-26560 Medium Yes Authentication bypass
Bluetooth Mesh Provisioning in the Bluetooth Mesh profile 1.0 and 1.0.1 may permit a nearby device, reflecting the authentication evidence from a...
CVE-2020-26559 Medium Yes Private key recovery
Bluetooth Mesh Provisioning in the Bluetooth Mesh profile 1.0 and 1.0.1 may permit a nearby device (participating in the provisioning protocol) to identify...
CVE-2020-26557 Medium Yes Private key recovery
Mesh Provisioning in the Bluetooth Mesh profile 1.0 and 1.0.1 may permit a nearby device (without possession of the AuthValue used in the provisioning...
CVE-2020-26556 Medium Yes Private key recovery
Mesh Provisioning in the Bluetooth Mesh profile 1.0 and 1.0.1 may permit a nearby device, able to conduct a successful brute-force attack on an...
CVE-2020-26555 Medium Yes Authentication bypass
Bluetooth legacy BR/EDR PIN code pairing in Bluetooth Core Specification 1.0B through 5.2 may permit an unauthenticated nearby device to spoof the BD_ADDR...