Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2021-33034

A use-after-free flaw was found in hci_send_acl in the bluetooth host controller interface (HCI) in Linux kernel, where a local attacker with an access rights could cause a denial of service problem on the system The issue results from the object hchan, freed in hci_disconn_loglink_complete_evt, yet still used in other places. The highest threat from this vulnerability is to data integrity, confidentiality and system availability. (CVE-2021-33034)

Source

ALAS2LIVEPATCH-2021-053

Amazon Linux 2 Security Advisory: ALASLIVEPATCH-2021-053
Advisory Release Date: 2021-06-22 18:38 Pacific
Advisory Updated Date: 2021-07-07 21:59 Pacific

Severity: Important

References: CVE-2021-33034

Issue Overview:

A use-after-free flaw was found in hci_send_acl in the bluetooth host controller interface (HCI) in Linux kernel, where a local attacker with an access rights could cause a denial of service problem on the system The issue results from the object hchan, freed in hci_disconn_loglink_complete_evt, yet still used in other places. The highest threat from this vulnerability is to data integrity, confidentiality and system availability. (CVE-2021-33034)

Affected Packages:

kernel-livepatch-4.14.231-173.361

Issue Correction:
Please ensure you have live patching enabled.
Run yum update kernel-livepatch-4.14.231-173.361 to update your system.

New Packages:

src:
    kernel-livepatch-4.14.231-173.361-1.0-2.amzn2.src

x86_64:
    kernel-livepatch-4.14.231-173.361-1.0-2.amzn2.x86_64
    kernel-livepatch-4.14.231-173.361-debuginfo-1.0-2.amzn2.x86_64

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

ALAS2LIVEPATCH-2021-053

ALAS2LIVEPATCH-2021-053

Vulmon Search

About

Products

Connect