CVE-2021-32606 - log back

CVE-2021-32606 edited at 03 Jun 2021 13:52:57
Description
- In the Linux kernel since 5.11, isotp_setsockopt in net/can/isotp.c allows privilege escalation to root by leveraging a use-after-free. (This does not affect earlier versions that lack CAN ISOTP SF_BROADCAST support.)
+ In the Linux kernel since 5.11 before 5.12.9, isotp_setsockopt in net/can/isotp.c allows privilege escalation to root by leveraging a use-after-free. (This does not affect earlier versions that lack CAN ISOTP SF_BROADCAST support.)
References
https://www.openwall.com/lists/oss-security/2021/05/11/16
https://www.openwall.com/lists/oss-security/2021/05/28/1
https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-32606/cve-2021-32606.md
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=2b17c400aeb44daf041627722581ade527bb3c1d
+ https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.12.9&id=b190618d8337b9466d985854e417dc0e8b012e3c
CVE-2021-32606 edited at 28 May 2021 19:15:39
References
https://www.openwall.com/lists/oss-security/2021/05/11/16
+ https://www.openwall.com/lists/oss-security/2021/05/28/1
https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-32606/cve-2021-32606.md
+ https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=2b17c400aeb44daf041627722581ade527bb3c1d
CVE-2021-32606 edited at 14 May 2021 07:27:11
References
https://www.openwall.com/lists/oss-security/2021/05/11/16
+ https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-32606/cve-2021-32606.md
CVE-2021-32606 edited at 12 May 2021 21:24:37
Description
- In the Linux kernel 5.11 through 5.12.2, isotp_setsockopt in net/can/isotp.c allows privilege escalation to root by leveraging a use-after-free. (This does not affect earlier versions that lack CAN ISOTP SF_BROADCAST support.)
+ In the Linux kernel since 5.11, isotp_setsockopt in net/can/isotp.c allows privilege escalation to root by leveraging a use-after-free. (This does not affect earlier versions that lack CAN ISOTP SF_BROADCAST support.)
CVE-2021-32606 edited at 12 May 2021 07:14:11
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Local
Type
- Unknown
+ Privilege escalation
Description
+ In the Linux kernel 5.11 through 5.12.2, isotp_setsockopt in net/can/isotp.c allows privilege escalation to root by leveraging a use-after-free. (This does not affect earlier versions that lack CAN ISOTP SF_BROADCAST support.)
References
+ https://www.openwall.com/lists/oss-security/2021/05/11/16
CVE-2021-32606 created at 12 May 2021 07:12:01
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes