CVE-2021-0535 log
Source |
|
Severity | High |
Remote | No |
Type | Privilege escalation |
Description | In wpas_ctrl_msg_queue_timeout of ctrl_iface_unix.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with system execution privileges needed. User interaction is not needed for exploitation. |
Group | Package | Affected | Fixed | Severity | Status | Ticket |
---|---|---|---|---|---|---|
AVG-1626 | wpa_supplicant | 2:2.9-8 | 2:2.10-1 | High | Fixed | FS#69784 |
References |
---|
https://source.android.com/security/bulletin/pixel/2021-06-01 https://w1.fi/cgit/hostap/commit/wpa_supplicant/?id=8ca330bd709bf7c000dfda5b1edbc0cbeabb8b55 |