---

CVE-2021-38208 - log back

CVE-2021-38208 created at 24 Aug 2021 11:34:30
Severity	+ Low
Remote	+ Local
Type	+ Denial of service
Description	+ net/nfc/llcp_sock.c in the Linux kernel before 5.12.10 allows local unprivileged users to cause a denial of service (NULL pointer dereference and BUG) by making a getsockname call after a certain type of failure of a bind call.
References	+ https://www.openwall.com/lists/oss-security/2021/06/01/1 + https://www.openwall.com/lists/oss-security/2021/08/24/2 + https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.12.10&id=0c4559736d9a4ec1ca58ba98ca34e7c4da4c422b + https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v5.10.43&id=48ee0db61c8299022ec88c79ad137f290196cac2
Notes