Vulnerability CVE-2021-38208

Vulnerability Name:

CVE-2021-38208 (CCN-207015)

Assigned:

2021-06-01

Published:

2021-06-01

Updated:

2021-09-21

Summary:

net/nfc/llcp_sock.c in the Linux kernel before 5.12.10 allows local unprivileged users to cause a denial of service (NULL pointer dereference and BUG) by making a getsockname call after a certain type of failure of a bind call.

CVSS v3 Severity:

5.5 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H)
4.8 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): High

6.2 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
5.4 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): High

CVSS v2 Severity:

2.1 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

4.9 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Complete

Vulnerability Type:

CWE-476

Vulnerability Consequences:

Denial of Service

References:

Source: MITRE
Type: CNA
CVE-2021-38208

Source: MLIST
Type: Mailing List, Third Party Advisory
[oss-security] 20210817 Re: Linux kernel: nfc: null ptr dereference in llcp_sock_getname

Source: MLIST
Type: Mailing List, Third Party Advisory
[oss-security] 20210817 Re: Linux kernel: nfc: null ptr dereference in llcp_sock_getname

Source: MLIST
Type: Mailing List, Third Party Advisory
[oss-security] 20210824 Re: Linux kernel: nfc: null ptr dereference in llcp_sock_getname

Source: CONFIRM
Type: Issue Tracking, Patch, Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1992810

Source: MISC
Type: Mailing List, Patch, Vendor Advisory
https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.12.10

Source: XF
Type: UNKNOWN
linux-kernel-cve202138208-dos(207015)

Source: CCN
Type: Linux Kernel GIT Repository
nfc: fix NULL ptr dereference in llcp_sock_getname() after failed connect

Source: MISC
Type: Exploit, Patch, Third Party Advisory
https://github.com/torvalds/linux/commit/4ac06a1e013cf5fdd963317ffd3b968560f33bba

Source: CCN
Type: oss-sec Mailing List, Tue, 1 Jun 2021 15:37:06 +0800
Linux kernel: nfc: null ptr dereference in llcp_sock_getname

Source: CCN
Type: oss-sec Mailing List, Tue, 8 Jun 2021 13:44:32 +1000
Re: Linux kernel: nfc: null ptr dereference in llcp_sock_getname

Vulnerable Configuration:

Configuration 1:

cpe:/o:linux:linux_kernel:*:*:*:*:*:*:*:* (Version < 5.12.10)

Configuration CCN 1:

cpe:/o:linux:linux_kernel:5.12:-:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:531	P	Security update for the Linux Kernel (Important)	2022-06-17
oval:org.opensuse.security:def:125369	P	Security update for the Linux Kernel (Important)	2022-06-14
oval:org.opensuse.security:def:125732	P	Security update for the Linux Kernel (Important)	2022-06-14
oval:org.opensuse.security:def:126898	P	Security update for the Linux Kernel (Important)	2022-06-14
oval:org.opensuse.security:def:125112	P	Security update for the Linux Kernel (Important)	2022-06-14
oval:org.opensuse.security:def:127295	P	Security update for the Linux Kernel (Important)	2022-06-14
oval:org.opensuse.security:def:4604	P	Security update for the Linux Kernel (Important)	2022-05-16
oval:org.opensuse.security:def:1760	P	Security update for the Linux Kernel (Important)	2022-05-16
oval:org.opensuse.security:def:890	P	Security update for the Linux Kernel (Important)	2022-05-16
oval:org.opensuse.security:def:481	P	Security update for the Linux Kernel (Important)	2022-05-16
oval:org.opensuse.security:def:6039	P	Security update for the Linux Kernel (Important)	2022-05-16
oval:org.opensuse.security:def:42381	P	Security update for the Linux Kernel (Important)	2022-05-16
oval:org.opensuse.security:def:1559	P	Security update for the Linux Kernel (Important)	2022-05-16
oval:org.opensuse.security:def:4734	P	Security update for the Linux Kernel (Important)	2022-05-16
oval:org.opensuse.security:def:1803	P	Security update for the Linux Kernel (Important)	2022-05-16
oval:org.opensuse.security:def:1168	P	Security update for the Linux Kernel (Important)	2022-05-16
oval:org.opensuse.security:def:6331	P	Security update for the Linux Kernel (Important)	2022-05-16
oval:org.opensuse.security:def:42383	P	Security update for the Linux Kernel (Important)	2022-05-16
oval:org.opensuse.security:def:1596	P	Security update for the Linux Kernel (Important)	2022-05-16
oval:org.opensuse.security:def:5241	P	Security update for the Linux Kernel (Important)	2022-05-16
oval:org.opensuse.security:def:42282	P	Security update for the Linux Kernel (Important)	2022-05-16
oval:org.opensuse.security:def:1234	P	Security update for the Linux Kernel (Important)	2022-05-16
oval:org.opensuse.security:def:4295	P	Security update for the Linux Kernel (Important)	2022-05-16
oval:org.opensuse.security:def:1750	P	Security update for the Linux Kernel (Important)	2022-05-16
oval:org.opensuse.security:def:42284	P	Security update for the Linux Kernel (Important)	2022-05-16
oval:org.opensuse.security:def:1350	P	Security update for the Linux Kernel (Important)	2022-05-16
oval:org.opensuse.security:def:6034	P	Security update for the Linux Kernel (Important)	2022-05-12

BACK