CVE-2021-32399

Summary

CVE	CVE-2021-32399
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2021-05-10 22:15:00 UTC
Updated	2022-05-13 20:53:00 UTC
Description	net/bluetooth/hci_request.c in the Linux kernel through 5.12.2 has a race condition for removal of the HCI controller.

Risk And Classification

Problem Types: CWE-362

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Operating System	Debian	Debian Linux	9.0	All	All	All
Operating System	Linux	Linux Kernel	All	All	All	All
Operating System	Linux	Linux Kernel	All	All	All	All
Application	Netapp	Cloud Backup	-	All	All	All
Hardware	Netapp	H300e	-	All	All	All
Operating System	Netapp	H300e Firmware	-	All	All	All
Hardware	Netapp	H300s	-	All	All	All
Operating System	Netapp	H300s Firmware	-	All	All	All
Hardware	Netapp	H410s	-	All	All	All
Operating System	Netapp	H410s Firmware	-	All	All	All
Hardware	Netapp	H500e	-	All	All	All
Operating System	Netapp	H500e Firmware	-	All	All	All
Hardware	Netapp	H500s	-	All	All	All
Operating System	Netapp	H500s Firmware	-	All	All	All
Hardware	Netapp	H700e	-	All	All	All
Operating System	Netapp	H700e Firmware	-	All	All	All
Hardware	Netapp	H700s	-	All	All	All
Operating System	Netapp	H700s Firmware	-	All	All	All
Hardware	Netapp	Solidfire Baseboard Management Controller	-	All	All	All
Operating System	Netapp	Solidfire Baseboard Management Controller Firmware	-	All	All	All

References

Reference	Source	Link	Tags
CVE-2021-32399 Linux Kernel Vulnerability in NetApp Products \| NetApp Product Security	CONFIRM	security.netapp.com
bluetooth: eliminate the potential race condition when removing the H… · torvalds/linux@e2cb6b8 · GitHub	MISC	github.com
kernel/git/torvalds/linux.git - Linux kernel source tree	MISC	git.kernel.org
[SECURITY] [DLA 2689-1] linux security update	MLIST	lists.debian.org
[SECURITY] [DLA 2690-1] linux-4.19 security update	MLIST	lists.debian.org
oss-security - CVE-2021-32399 Linux device detach race condition	MLIST	www.openwall.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

Legacy QID Mappings

159304 Oracle Enterprise Linux Security Update for Unbreakable Enterprise kernel (ELSA-2021-9349)
159305 Oracle Enterprise Linux Security Update for Unbreakable Enterprise kernel-container (ELSA-2021-9351)
159306 Oracle Enterprise Linux Security Update for Unbreakable Enterprise kernel (ELSA-2021-9362)
159307 Oracle Enterprise Linux Security Update for Unbreakable Enterprise kernel-container (ELSA-2021-9363)
159308 Oracle Enterprise Linux Security Update for kernel (ELSA-2021-2714)
159332 Oracle Enterprise Linux Security Update for Unbreakable Enterprise kernel (ELSA-2021-9395)
159375 Oracle Enterprise Linux Security Update for kernel (ELSA-2021-3327)
160101 Oracle Enterprise Linux Security Update for kernel (ELSA-2022-9793)
178679 Debian Security Update for linux-4.19 (DLA 2690-1)
178680 Debian Security Update for linux (DLA 2689-1)
179927 Debian Security Update for linux (CVE-2021-32399)
198416 Ubuntu Security Notification for Linux kernel vulnerabilities (USN-4997-1)
198418 Ubuntu Security Notification for Linux kernel vulnerabilities (USN-5000-1)
198419 Ubuntu Security Notification for Linux kernel (OEM) vulnerabilities (USN-5001-1)
198425 Ubuntu Security Notification for Linux kernel (KVM) vulnerabilities (USN-5000-2)
198426 Ubuntu Security Notification for Linux kernel (KVM) vulnerabilities (USN-4997-2)
198437 Ubuntu Security Notification for Linux kernel vulnerabilities (USN-5016-1) (Sequoia)
198459 Ubuntu Security Notification for Linux, Linux-aws, Linux-aws-hwe, Linux-azure, Linux-azure-4.15, Linux-gcp, (USN-5018-1)
239504 Red Hat Update for kpatch-patch (RHSA-2021:2716) (Sequoia)
239505 Red Hat Update for kernel-rt (RHSA-2021:2715) (Sequoia)
239506 Red Hat Update for kernel (RHSA-2021:2714) (Sequoia)
239566 Red Hat Update for kpatch-patch (RHSA-2021:3181)
239570 Red Hat Update for kernel (RHSA-2021:3173)
239592 Red Hat Update for kpatch-patch (RHSA-2021:3381)
239593 Red Hat Update for kpatch-patch (RHSA-2021:3380)
239594 Red Hat Update for kernel-rt (RHSA-2021:3375)
239599 Red Hat Update for kernel (RHSA-2021:3363)
239602 Red Hat Update for kernel-rt (RHSA-2021:3328)
239603 Red Hat Update for kernel (RHSA-2021:3327)
257109 CentOS Security Update for kernel (CESA-2021:3327)
352489 Amazon Linux Security Advisory for kernel: ALAS2-2021-1685
352831 Amazon Linux Security Advisory for kernel: ALAC2012-2021-030
352832 Amazon Linux Security Advisory for kmod-sfc: ALAC2012-2021-031
352833 Amazon Linux Security Advisory for kmod-mlx5: ALAC2012-2021-032
353147 Amazon Linux Security Advisory for kernel : ALAS2KERNEL-5.4-2022-004
353158 Amazon Linux Security Advisory for kernel : ALAS2KERNEL-5.10-2022-002
390220 Oracle Managed Virtualization (VM) Server for x86 Security Update for kernel (OVMSA-2021-0025)
670488 EulerOS Security Update for kernel (EulerOS-SA-2021-2246)
670514 EulerOS Security Update for kernel (EulerOS-SA-2021-2272)
670578 EulerOS Security Update for kernel (EulerOS-SA-2021-2336)
670634 EulerOS Security Update for kernel (EulerOS-SA-2021-2392)
671047 EulerOS Security Update for kernel (EulerOS-SA-2021-2588)
750117 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2021:1891-1)
750118 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2021:1890-1)
750121 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2021:1888-1)
750125 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2021:1887-1)
750126 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2021:1889-1)
750139 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2021:1913-1)
750140 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2021:1912-1)
750171 OpenSUSE Security Update for the Linux Kernel (openSUSE-SU-2021:0843-1)
750650 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2021:1975-1)
750652 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2021:1977-1)
750671 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 37 for SLE 12 SP3) (SUSE-SU-2021:2042-1)
750672 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 7 for SLE 12 SP5) (SUSE-SU-2021:2025-1)
750673 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 17 for SLE 12 SP5) (SUSE-SU-2021:2067-1)
750674 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 18 for SLE 12 SP5) (SUSE-SU-2021:2020-1)
750678 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 24 for SLE 15) (SUSE-SU-2021:2057-1)
750679 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 22 for SLE 15) (SUSE-SU-2021:2060-1)
750741 OpenSUSE Security Update for the Linux Kernel (openSUSE-SU-2021:0947-1)
750762 OpenSUSE Security Update for the Linux Kernel (openSUSE-SU-2021:1977-1)
750766 OpenSUSE Security Update for the Linux Kernel (openSUSE-SU-2021:1975-1)
750864 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2021:2421-1)
750880 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2021:2451-1)
900096 CBL-Mariner Linux Security Update for kernel 5.10.52.1
900304 CBL-Mariner Linux Security Update for kernel 5.10.57.1
900319 CBL-Mariner Linux Security Update for kernel 5.10.60.1
901637 Common Base Linux Mariner (CBL-Mariner) Security Update for kernel (6560-1)
902835 Common Base Linux Mariner (CBL-Mariner) Security Update for kernel (4183)
906044 Common Base Linux Mariner (CBL-Mariner) Security Update for kernel (4183-1)
940164 AlmaLinux Security Update for kernel (ALSA-2021:2714)
960070 Rocky Linux Security Update for kernel (RLSA-2021:2714)