UBUNTU-CVE-2021-23134

Description

Use After Free vulnerability in nfc sockets in the Linux Kernel before 5.12.4 allows local attackers to elevate their privileges. In typical configurations, the issue can only be triggered by a privileged local user with the CAP_NET_RAW capability.

CVSS Metrics

• v3.1•HIGH•Score: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Systems

• ubuntu•linux

  < 4.15.0-151.157 | < 5.4.0-77.86

• ubuntu•linux-aws

  < 4.15.0-1109.116 | < 5.4.0-1051.53

• ubuntu•linux-aws-5.0

  all

• ubuntu•linux-aws-5.3

  all

• ubuntu•linux-aws-5.4

  < 5.4.0-1051.53~18.04.1

• ubuntu•linux-aws-5.8

  < 5.8.0-1041.43~20.04.1

• ubuntu•linux-aws-fips

  < 4.15.0-2051.53

• ubuntu•linux-aws-hwe

  < 4.15.0-1109.116~16.04.1

• ubuntu•linux-azure

  < 4.15.0-1121.134~14.04.1 | < 4.15.0-1121.134~16.04.1 | all | < 5.4.0-1051.53

• ubuntu•linux-azure-4.15

  < 4.15.0-1121.134

• ubuntu•linux-azure-5.3

  all

• ubuntu•linux-azure-5.4

  < 5.4.0-1051.53~18.04.1

• ubuntu•linux-azure-5.8

  < 5.8.0-1039.42~20.04.1

• ubuntu•linux-azure-edge

  all

• ubuntu•linux-azure-fips

  < 4.15.0-2033.37

• ubuntu•linux-bluefield

  < 5.4.0-1013.16

• ubuntu•linux-dell300x

  < 4.15.0-1027.32

• ubuntu•linux-fips

  < 4.15.0-1066.75 | < 5.4.0-1028.32

• ubuntu•linux-gcp

  < 4.15.0-1106.120~16.04.1 | all | < 5.4.0-1046.49

• ubuntu•linux-gcp-4.15

  < 4.15.0-1106.120

• ubuntu•linux-gcp-5.3

  all

• ubuntu•linux-gcp-5.4

  < 5.4.0-1046.49~18.04.1

• ubuntu•linux-gcp-5.8

  < 5.8.0-1038.40~20.04.1

• ubuntu•linux-gcp-edge

  all

• ubuntu•linux-gcp-fips

  < 4.15.0-2016.18

• ubuntu•linux-gke

  < 5.4.0-1046.48

• ubuntu•linux-gke-4.15

  all

• ubuntu•linux-gke-5.4

  < 5.4.0-1046.48~18.04.1

• ubuntu•linux-gkeop

  < 5.4.0-1018.19

• ubuntu•linux-gkeop-5.4

  < 5.4.0-1018.19~18.04.1

• ubuntu•linux-hwe

  < 4.15.0-151.157~16.04.1 | all

• ubuntu•linux-hwe-5.4

  < 5.4.0-77.86~18.04.1

• ubuntu•linux-hwe-5.8

  < 5.8.0-63.71~20.04.1

• ubuntu•linux-hwe-edge

  all

• ubuntu•linux-intel-iot-realtime

  all

• ubuntu•linux-kvm

  < 4.15.0-1097.99 | < 5.4.0-1041.42

• ubuntu•linux-oem

  all

• ubuntu•linux-oem-5.10

  < 5.10.0-1032.33

• ubuntu•linux-oracle

  < 4.15.0-1078.86~16.04.1 | < 4.15.0-1078.86 | < 5.4.0-1048.52

• ubuntu•linux-oracle-5.0

  all

• ubuntu•linux-oracle-5.3

  all

• ubuntu•linux-oracle-5.4

  < 5.4.0-1048.52~18.04.1

• ubuntu•linux-oracle-5.8

  < 5.8.0-1037.38~20.04.1

• ubuntu•linux-raspi

  < 5.4.0-1038.41

• ubuntu•linux-raspi-5.4

  < 5.4.0-1038.41~18.04.1

• ubuntu•linux-raspi-realtime

  all

• ubuntu•linux-raspi2

  < 4.15.0-1092.98 | all

• ubuntu•linux-realtime

  all

• ubuntu•linux-riscv

  all

• ubuntu•linux-riscv-5.8

  all

Showing first 50 affected entries in server-rendered view.

References (11)

• https://ubuntu.com/security/CVE-2021-23134
• https://git.kernel.org/linus/c61760e6940dd4039a7f5e84a6afc9cdbf4d82b6
• https://ubuntu.com/security/notices/USN-4997-1
• https://ubuntu.com/security/notices/USN-5000-1
• https://ubuntu.com/security/notices/USN-5001-1
• https://ubuntu.com/security/notices/USN-5018-1
• https://ubuntu.com/security/notices/USN-5016-1
• https://ubuntu.com/security/notices/USN-5000-2
• https://ubuntu.com/security/notices/USN-4997-2
• https://ubuntu.com/security/notices/USN-5343-1
• https://www.cve.org/CVERecord?id=CVE-2021-23134