Rapid7 Vulnerability & Exploit Database

SUSE: CVE-2021-4202: SUSE Linux Security Advisory

Free InsightVM Trial No Credit Card Necessary

2024 Attack Intel Report Latest research by Rapid7 Labs

Back to Search

SUSE: CVE-2021-4202: SUSE Linux Security Advisory

Severity

CVSS

(AV:L/AC:M/Au:N/C:C/I:C/A:C)

Published

01/25/2022

Created

01/28/2022

Added

01/26/2022

Modified

01/27/2023

Description

A use-after-free flaw was found in nci_request in net/nfc/nci/core.c in NFC Controller Interface (NCI) in the Linux kernel. This flaw could allow a local attacker with user privileges to cause a data race problem while the device is getting removed, leading to a privilege escalation problem.

Solution(s)

suse-upgrade-cluster-md-kmp-64kb
suse-upgrade-cluster-md-kmp-azure
suse-upgrade-cluster-md-kmp-default
suse-upgrade-cluster-md-kmp-preempt
suse-upgrade-dlm-kmp-64kb
suse-upgrade-dlm-kmp-azure
suse-upgrade-dlm-kmp-default
suse-upgrade-dlm-kmp-preempt
suse-upgrade-dtb-al
suse-upgrade-dtb-allwinner
suse-upgrade-dtb-altera
suse-upgrade-dtb-amd
suse-upgrade-dtb-amlogic
suse-upgrade-dtb-apm
suse-upgrade-dtb-arm
suse-upgrade-dtb-broadcom
suse-upgrade-dtb-cavium
suse-upgrade-dtb-exynos
suse-upgrade-dtb-freescale
suse-upgrade-dtb-hisilicon
suse-upgrade-dtb-lg
suse-upgrade-dtb-marvell
suse-upgrade-dtb-mediatek
suse-upgrade-dtb-nvidia
suse-upgrade-dtb-qcom
suse-upgrade-dtb-renesas
suse-upgrade-dtb-rockchip
suse-upgrade-dtb-socionext
suse-upgrade-dtb-sprd
suse-upgrade-dtb-xilinx
suse-upgrade-dtb-zte
suse-upgrade-gfs2-kmp-64kb
suse-upgrade-gfs2-kmp-azure
suse-upgrade-gfs2-kmp-default
suse-upgrade-gfs2-kmp-preempt
suse-upgrade-kernel-64kb
suse-upgrade-kernel-64kb-devel
suse-upgrade-kernel-64kb-extra
suse-upgrade-kernel-64kb-livepatch-devel
suse-upgrade-kernel-64kb-optional
suse-upgrade-kernel-azure
suse-upgrade-kernel-azure-base
suse-upgrade-kernel-azure-devel
suse-upgrade-kernel-azure-extra
suse-upgrade-kernel-azure-livepatch-devel
suse-upgrade-kernel-azure-optional
suse-upgrade-kernel-debug
suse-upgrade-kernel-debug-base
suse-upgrade-kernel-debug-devel
suse-upgrade-kernel-debug-livepatch-devel
suse-upgrade-kernel-default
suse-upgrade-kernel-default-base
suse-upgrade-kernel-default-base-rebuild
suse-upgrade-kernel-default-devel
suse-upgrade-kernel-default-extra
suse-upgrade-kernel-default-kgraft
suse-upgrade-kernel-default-livepatch
suse-upgrade-kernel-default-livepatch-devel
suse-upgrade-kernel-default-man
suse-upgrade-kernel-default-optional
suse-upgrade-kernel-devel
suse-upgrade-kernel-devel-azure
suse-upgrade-kernel-docs
suse-upgrade-kernel-docs-html
suse-upgrade-kernel-kvmsmall
suse-upgrade-kernel-kvmsmall-base
suse-upgrade-kernel-kvmsmall-devel
suse-upgrade-kernel-kvmsmall-livepatch-devel
suse-upgrade-kernel-macros
suse-upgrade-kernel-obs-build
suse-upgrade-kernel-obs-qa
suse-upgrade-kernel-preempt
suse-upgrade-kernel-preempt-devel
suse-upgrade-kernel-preempt-extra
suse-upgrade-kernel-preempt-livepatch-devel
suse-upgrade-kernel-preempt-optional
suse-upgrade-kernel-source
suse-upgrade-kernel-source-azure
suse-upgrade-kernel-source-vanilla
suse-upgrade-kernel-syms
suse-upgrade-kernel-syms-azure
suse-upgrade-kernel-vanilla
suse-upgrade-kernel-vanilla-base
suse-upgrade-kernel-vanilla-devel
suse-upgrade-kernel-vanilla-livepatch-devel
suse-upgrade-kernel-zfcpdump
suse-upgrade-kernel-zfcpdump-man
suse-upgrade-kgraft-patch-4_4_180-94_138-default
suse-upgrade-kgraft-patch-4_4_180-94_141-default
suse-upgrade-kgraft-patch-4_4_180-94_144-default
suse-upgrade-kgraft-patch-4_4_180-94_147-default
suse-upgrade-kgraft-patch-4_4_180-94_150-default
suse-upgrade-kgraft-patch-4_4_180-94_153-default
suse-upgrade-kselftests-kmp-64kb
suse-upgrade-kselftests-kmp-azure
suse-upgrade-kselftests-kmp-default
suse-upgrade-kselftests-kmp-preempt
suse-upgrade-ocfs2-kmp-64kb
suse-upgrade-ocfs2-kmp-azure
suse-upgrade-ocfs2-kmp-default
suse-upgrade-ocfs2-kmp-preempt
suse-upgrade-reiserfs-kmp-64kb
suse-upgrade-reiserfs-kmp-azure
suse-upgrade-reiserfs-kmp-default
suse-upgrade-reiserfs-kmp-preempt

References

Advanced vulnerability management analytics and reporting.

Key Features

Lightweight Endpoint Agent
Live Dashboards
Real Risk Prioritization
IT-Integrated Remediation Projects
Cloud, Virtual, and Container Assessment
Integrated Threat Feeds
Easy-to-Use RESTful API
Automation-Assisted Patching
Automated Containment

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;

Rapid7 Vulnerability & Exploit Database

SUSE: CVE-2021-4202: SUSE Linux Security Advisory

SUSE: CVE-2021-4202: SUSE Linux Security Advisory

Description

Solution(s)

References

Submit your information and we will get in touch with you.

Thank you for contacting us.

We will be in touch shortly.