CVE-2021-38208 log

Source
Severity Low
Remote No
Type Denial of service
Description
net/nfc/llcp_sock.c in the Linux kernel before 5.12.10 allows local unprivileged users to cause a denial of service (NULL pointer dereference and BUG) by making a getsockname call after a certain type of failure of a bind call.
Group Package Affected Fixed Severity Status Ticket
AVG-2066 linux-lts 5.10.42-1 5.10.43-1 Medium Fixed
AVG-2065 linux-hardened 5.12.9.hardened1-1 5.12.10.hardened1-1 Medium Fixed
AVG-2064 linux-zen 5.12.9.zen1-1 5.12.10.zen1-1 Medium Fixed
AVG-2063 linux 5.12.9.arch1-1 5.12.10.arch1-1 Medium Fixed
References
https://www.openwall.com/lists/oss-security/2021/06/01/1
https://www.openwall.com/lists/oss-security/2021/08/24/2
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.12.10&id=0c4559736d9a4ec1ca58ba98ca34e7c4da4c422b
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.10.43&id=48ee0db61c8299022ec88c79ad137f290196cac2