A flaw use-after-free in function sco_sock_sendmsg() of the Linux kernel HCI subsystem was found in the way user calls ioct UFFDIO_REGISTER or other way triggers race condition of the call sco_conn_del() together with the call sco_sock_sendmsg() with the expected controllable faulting memory page. A privileged local user could use this flaw to crash the system or escalate their privileges on the system.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published:

Updated: 2024-08-03T17:01:07.744Z

Reserved: 2021-07-09T00:00:00

Link: CVE-2021-3640

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-03-03T23:15:08.197

Modified: 2024-11-21T06:22:03.073

Link: CVE-2021-3640

cve-icon Redhat

Severity : Moderate

Publid Date: 2021-07-18T00:00:00Z

Links: CVE-2021-3640 - Bugzilla

cve-icon OpenCVE Enrichment

No data.