CVE-2021-38208 - log back

CVE-2021-38208 created at 24 Aug 2021 11:34:30
Severity
+ Low
Remote
+ Local
Type
+ Denial of service
Description
+ net/nfc/llcp_sock.c in the Linux kernel before 5.12.10 allows local unprivileged users to cause a denial of service (NULL pointer dereference and BUG) by making a getsockname call after a certain type of failure of a bind call.
References
+ https://www.openwall.com/lists/oss-security/2021/06/01/1
+ https://www.openwall.com/lists/oss-security/2021/08/24/2
+ https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.12.10&id=0c4559736d9a4ec1ca58ba98ca34e7c4da4c422b
+ https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.10.43&id=48ee0db61c8299022ec88c79ad137f290196cac2
Notes