CVE-2021-23134 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Medium
Remote	No
Type	Privilege escalation
Description	A use after free security issue has been found in the Linux kernel before version 5.12.4 in the implementation of nfc sockets (in net/nfc/llcp_sock.c), allowing local attackers to elevate their privileges. In typical configurations, the issue can only be triggered by a privileged local user with the CAP_NET_RAW capability.

Group	Package	Affected	Fixed	Severity	Status
AVG-1961	linux-lts	5.10.36-2	5.10.37-1	Medium	Fixed
AVG-1960	linux-hardened	5.11.20.hardened1-2	5.11.21.hardened1-1	Medium	Fixed
AVG-1959	linux-zen	5.12.3.zen2-1	5.12.4.zen1-1	Medium	Fixed
AVG-1958	linux	5.12.3.arch2-1	5.12.4.arch1-1	Medium	Fixed

References
https://www.openwall.com/lists/oss-security/2021/05/11/4 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.12.4&id=18175fe17ae043a0b81e5d511f8817825784c299 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.11.21&id=374cdde4dcc9c909a60713abdbbf96d5e3e09f91 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.10.37&id=6b7021ed36dabf29e56842e3408781cd3b82ef6e

References

https://www.openwall.com/lists/oss-security/2021/05/11/4
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.12.4&id=18175fe17ae043a0b81e5d511f8817825784c299
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.11.21&id=374cdde4dcc9c909a60713abdbbf96d5e3e09f91
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.10.37&id=6b7021ed36dabf29e56842e3408781cd3b82ef6e