CVE-2021-0535 log

Source
Severity Medium
Remote No
Type Privilege escalation
Description
In wpas_ctrl_msg_queue_timeout of ctrl_iface_unix.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with system execution privileges needed. User interaction is not needed for exploitation.
Group Package Affected Fixed Severity Status Ticket
AVG-1626 wpa_supplicant 2:2.9-8 Medium Vulnerable FS#69784
References
https://source.android.com/security/bulletin/pixel/2021-06-01
https://w1.fi/cgit/hostap/commit/wpa_supplicant/?id=8ca330bd709bf7c000dfda5b1edbc0cbeabb8b55