.A flaw was found in the CAN BCM networking protocol in the Linux kernel, where a local attacker can abuse a flaw in the CAN subsystem to corrupt memory, crash the system or escalate privileges. This race condition in net/can/bcm.c in the Linux kernel allows for local privilege escalation to root.
Advisories
Source ID Title
Debian DLA Debian DLA DLA-2713-1 linux security update
Debian DLA Debian DLA DLA-2713-2 linux security update
Debian DLA Debian DLA DLA-2714-1 linux-4.19 security update
Debian DSA Debian DSA DSA-4941-1 linux security update
EUVD EUVD EUVD-2021-26913 .A flaw was found in the CAN BCM networking protocol in the Linux kernel, where a local attacker can abuse a flaw in the CAN subsystem to corrupt memory, crash the system or escalate privileges. This race condition in net/can/bcm.c in the Linux kernel allows for local privilege escalation to root.
Ubuntu USN Ubuntu USN USN-4997-1 Linux kernel vulnerabilities
Ubuntu USN Ubuntu USN USN-4997-2 Linux kernel (KVM) vulnerabilities
Ubuntu USN Ubuntu USN USN-4999-1 Linux kernel vulnerabilities
Ubuntu USN Ubuntu USN USN-5000-1 Linux kernel vulnerabilities
Ubuntu USN Ubuntu USN USN-5000-2 Linux kernel (KVM) vulnerabilities
Ubuntu USN Ubuntu USN USN-5001-1 Linux kernel (OEM) vulnerabilities
Ubuntu USN Ubuntu USN USN-5002-1 Linux kernel (HWE) vulnerability
Ubuntu USN Ubuntu USN USN-5003-1 Linux kernel vulnerabilities
Ubuntu USN Ubuntu USN USN-5082-1 Linux kernel (OEM) vulnerabilities
Ubuntu USN Ubuntu USN USN-5505-1 Linux kernel vulnerabilities
Ubuntu USN Ubuntu USN USN-5513-1 Linux kernel (AWS) vulnerabilities
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published:

Updated: 2024-08-03T17:01:07.458Z

Reserved: 2021-06-18T00:00:00

Link: CVE-2021-3609

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-03-03T19:15:08.173

Modified: 2024-11-21T06:21:58.233

Link: CVE-2021-3609

cve-icon Redhat

Severity : Important

Publid Date: 2021-06-19T00:00:00Z

Links: CVE-2021-3609 - Bugzilla

cve-icon OpenCVE Enrichment

No data.