Out-of-bounds read in Linux kernel bluetooth
| Risk | Low |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | CVE-2021-47620 |
| CWE-ID | CWE-125 |
| Exploitation vector | Local |
| Public exploit | N/A |
| Vulnerable software Subscribe |
Linux kernel Operating systems & Components / Operating system |
| Vendor | Linux Foundation |
Security Bulletin
This security bulletin contains one low risk vulnerability.
1) Out-of-bounds read
EUVDB-ID: #VU92905
Risk: Low
CVSSv3.1: 4.8 [AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2021-47620
CWE-ID:
CWE-125 - Out-of-bounds read
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the hci_le_adv_report_evt() function in net/bluetooth/hci_event.c. A local user can perform a denial of service (DoS) attack.
MitigationInstall update from vendor's website.
Vulnerable software versionsLinux kernel: All versions
CPE2.3http://git.kernel.org/stable/c/305e92f525450f3e1b5f5c9dc7eadb152d66a082
http://git.kernel.org/stable/c/7889b38a7f21ed19314f83194622b195d328465c
http://git.kernel.org/stable/c/5a539c08d743d9910631448da78af5e961664c0e
http://git.kernel.org/stable/c/8819f93cd4a443dfe547aa622b21f723757df3fb
http://git.kernel.org/stable/c/835d3706852537bf92eb23eb8635b8dee0c0aa67
http://git.kernel.org/stable/c/83d5196b65d1b29e27d7dd16a3b9b439fb1d2dba
http://git.kernel.org/stable/c/bcea886771c3f22a590c8c8b9139a107bd7f1e1c
http://git.kernel.org/stable/c/5c968affa804ba98c3c603f37ffea6fba618025e
http://git.kernel.org/stable/c/899663be5e75dc0174dc8bda0b5e6826edf0b29a
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
