CVE-2021-3609

Summary

CVE	CVE-2021-3609
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2022-03-03 19:15:00 UTC
Updated	2023-08-11 19:44:00 UTC
Description	.A flaw was found in the CAN BCM networking protocol in the Linux kernel, where a local attacker can abuse a flaw in the CAN subsystem to corrupt memory, crash the system or escalate privileges. This race condition in net/can/bcm.c in the Linux kernel allows for local privilege escalation to root.

Risk And Classification

Problem Types: CWE-362

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Linux	Linux Kernel	All	All	All	All
Application	Linux	Linux Kernel	5.13	rc1	All	All
Application	Linux	Linux Kernel	5.13	rc2	All	All
Application	Linux	Linux Kernel	5.13	rc3	All	All
Application	Linux	Linux Kernel	5.13	rc4	All	All
Application	Linux	Linux Kernel	5.13	rc5	All	All
Application	Linux	Linux Kernel	5.13	rc6	All	All
Operating System	Linux	Linux Kernel	All	All	All	All
Operating System	Linux	Linux Kernel	5.13	rc1	All	All
Operating System	Linux	Linux Kernel	5.13	rc2	All	All
Operating System	Linux	Linux Kernel	5.13	rc3	All	All
Operating System	Linux	Linux Kernel	5.13	rc4	All	All
Operating System	Linux	Linux Kernel	5.13	rc5	All	All
Operating System	Linux	Linux Kernel	5.13	rc6	All	All
Hardware	Netapp	H300e	-	All	All	All
Operating System	Netapp	H300e Firmware	-	All	All	All
Hardware	Netapp	H300s	-	All	All	All
Operating System	Netapp	H300s Firmware	-	All	All	All
Hardware	Netapp	H410c	-	All	All	All
Operating System	Netapp	H410c Firmware	-	All	All	All
Hardware	Netapp	H410s	-	All	All	All
Operating System	Netapp	H410s Firmware	-	All	All	All
Hardware	Netapp	H500e	-	All	All	All
Operating System	Netapp	H500e Firmware	-	All	All	All
Hardware	Netapp	H500s	-	All	All	All
Operating System	Netapp	H500s Firmware	-	All	All	All
Hardware	Netapp	H610c	-	All	All	All
Operating System	Netapp	H610c Firmware	-	All	All	All
Hardware	Netapp	H610s	-	All	All	All
Operating System	Netapp	H610s Firmware	-	All	All	All
Hardware	Netapp	H615c	-	All	All	All
Operating System	Netapp	H615c Firmware	-	All	All	All
Hardware	Netapp	H700e	-	All	All	All
Operating System	Netapp	H700e Firmware	-	All	All	All
Hardware	Netapp	H700s	-	All	All	All
Operating System	Netapp	H700s Firmware	-	All	All	All
Application	Redhat	3scale Api Management	2.0	All	All	All
Application	Redhat	Build Of Quarkus	1.0	All	All	All
Application	Redhat	Codeready Linux Builder Eus	8.1	All	All	All
Application	Redhat	Codeready Linux Builder Eus	8.2	All	All	All
Application	Redhat	Codeready Linux Builder Eus	8.4	All	All	All
Operating System	Redhat	Codeready Linux Builder Eus	8.1	All	All	All
Operating System	Redhat	Codeready Linux Builder Eus	8.2	All	All	All
Operating System	Redhat	Codeready Linux Builder Eus	8.4	All	All	All
Application	Redhat	Codeready Linux Builder For Power Little Endian Eus	8.1	All	All	All
Application	Redhat	Codeready Linux Builder For Power Little Endian Eus	8.2	All	All	All
Application	Redhat	Codeready Linux Builder For Power Little Endian Eus	8.4	All	All	All
Operating System	Redhat	Codeready Linux Builder For Power Little Endian Eus	8.1	All	All	All
Operating System	Redhat	Codeready Linux Builder For Power Little Endian Eus	8.2	All	All	All
Operating System	Redhat	Codeready Linux Builder For Power Little Endian Eus	8.4	All	All	All
Operating System	Redhat	Enterprise Linux Aus	8.2	All	All	All
Operating System	Redhat	Enterprise Linux Eus	8.1	All	All	All
Operating System	Redhat	Enterprise Linux Eus	8.2	All	All	All
Operating System	Redhat	Enterprise Linux Eus	8.4	All	All	All
Operating System	Redhat	Enterprise Linux For Ibm Z Systems Eus	8.4	All	All	All
Operating System	Redhat	Enterprise Linux For Ibm Z Systems Eus S390x	8.1	All	All	All
Operating System	Redhat	Enterprise Linux For Power Little Endian Eus	8.1	All	All	All
Operating System	Redhat	Enterprise Linux For Power Little Endian Eus	8.2	All	All	All
Operating System	Redhat	Enterprise Linux For Power Little Endian Eus	8.4	All	All	All
Operating System	Redhat	Enterprise Linux For Real Time	8.0	All	All	All
Operating System	Redhat	Enterprise Linux For Real Time For Nfv	8.0	All	All	All
Operating System	Redhat	Enterprise Linux For Real Time For Nfv Tus	8.0	All	All	All
Operating System	Redhat	Enterprise Linux For Real Time For Nfv Tus	8.2	All	All	All
Operating System	Redhat	Enterprise Linux For Real Time Tus	8.0	All	All	All
Operating System	Redhat	Enterprise Linux For Real Time Tus	8.2	All	All	All
Operating System	Redhat	Enterprise Linux Server Aus	8.2	All	All	All
Operating System	Redhat	Enterprise Linux Server Aus	8.4	All	All	All
Operating System	Redhat	Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions	8.1	All	All	All
Operating System	Redhat	Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions	8.2	All	All	All
Operating System	Redhat	Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions	8.4	All	All	All
Operating System	Redhat	Enterprise Linux Server Tus	8.2	All	All	All
Operating System	Redhat	Enterprise Linux Server Tus	8.4	All	All	All
Operating System	Redhat	Enterprise Linux Server Update Services For Sap Solutions	8.1	All	All	All
Operating System	Redhat	Enterprise Linux Server Update Services For Sap Solutions	8.2	All	All	All
Operating System	Redhat	Enterprise Linux Server Update Services For Sap Solutions	8.4	All	All	All
Application	Redhat	Openshift Container Platform	4.6	All	All	All
Application	Redhat	Openshift Container Platform	4.7	All	All	All
Application	Redhat	Openshift Container Platform	4.8	All	All	All
Application	Redhat	Virtualization	4.0	All	All	All
Application	Redhat	Virtualization Host	4.0	All	All	All

References

Reference	Source	Link	Tags
can: bcm: delay release of struct bcm_op after synchronize_rcu() · torvalds/linux@d5f9023 · GitHub	MISC	github.com
Red Hat Customer Portal - Access to 24x7 support and knowledge	MISC	access.redhat.com
Red Hat Customer Portal - Access to 24x7 support and knowledge	MISC	access.redhat.com
oss-security - CVE-2021-3609: Race condition in net/can/bcm.c leads to local privilege escalation	MISC	www.openwall.com
Red Hat Customer Portal - Access to 24x7 support and knowledge	MISC	access.redhat.com
Red Hat Customer Portal - Access to 24x7 support and knowledge	MISC	access.redhat.com
Red Hat Customer Portal - Access to 24x7 support and knowledge	MISC	access.redhat.com
Red Hat Customer Portal - Access to 24x7 support and knowledge	MISC	access.redhat.com
Red Hat Customer Portal - Access to 24x7 support and knowledge	MISC	access.redhat.com
Red Hat Customer Portal - Access to 24x7 support and knowledge	MISC	access.redhat.com
Red Hat Customer Portal - Access to 24x7 support and knowledge	MISC	access.redhat.com
Red Hat Customer Portal - Access to 24x7 support and knowledge	MISC	access.redhat.com
CVE-2021-3609 Linux Kernel Vulnerability in NetApp Products \| NetApp Product Security	CONFIRM	security.netapp.com
kernel-exploitation/cve-2021-3609.md at main · nrb547/kernel-exploitation · GitHub	MISC	github.com
1971651 – (CVE-2021-3609) CVE-2021-3609 kernel: race condition in net/can/bcm.c leads to local privilege escalation	MISC	bugzilla.redhat.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

Legacy QID Mappings

159329 Oracle Enterprise Linux Security Update for kernel (ELSA-2021-3057)
159380 Oracle Enterprise Linux Security Update for Unbreakable Enterprise kernel (ELSA-2021-9442)
159393 Oracle Enterprise Linux Security Update for Unbreakable Enterprise kernel (ELSA-2021-9450)
159394 Oracle Enterprise Linux Security Update for Unbreakable Enterprise kernel-container (ELSA-2021-9451)
159399 Oracle Enterprise Linux Security Update for Unbreakable Enterprise kernel (ELSA-2021-9452)
159400 Oracle Enterprise Linux Security Update for Unbreakable Enterprise kernel-container (ELSA-2021-9453)
178710 Debian Security Update for linux (DSA 4941-1)
178712 Debian Security Update for linux (DLA 2713-1)
178713 Debian Security Update for linux-4.19 (DLA 2714-1)
178714 Debian Security Update for linux (DLA 2713-2)
180451 Debian Security Update for linux (CVE-2021-3609)
198416 Ubuntu Security Notification for Linux kernel vulnerabilities (USN-4997-1)
198417 Ubuntu Security Notification for Linux kernel vulnerabilities (USN-4999-1)
198418 Ubuntu Security Notification for Linux kernel vulnerabilities (USN-5000-1)
198419 Ubuntu Security Notification for Linux kernel (OEM) vulnerabilities (USN-5001-1)
198420 Ubuntu Security Notification for Linux kernel (HWE) vulnerability (USN-5002-1)
198421 Ubuntu Security Notification for Linux kernel vulnerabilities (USN-5003-1)
198425 Ubuntu Security Notification for Linux kernel (KVM) vulnerabilities (USN-5000-2)
198426 Ubuntu Security Notification for Linux kernel (KVM) vulnerabilities (USN-4997-2)
198504 Ubuntu Security Notification for Linux kernel (OEM) Vulnerabilities (USN-5082-1)
239541 Red Hat Update for kernel (RHSA-2021:3057)
239542 Red Hat Update for kpatch-patch (RHSA-2021:3044)
239543 Red Hat Update for kernel-rt (RHSA-2021:3088)
239593 Red Hat Update for kpatch-patch (RHSA-2021:3380)
239594 Red Hat Update for kernel-rt (RHSA-2021:3375)
239599 Red Hat Update for kernel (RHSA-2021:3363)
239614 Red Hat Update for kernel (RHSA-2021:3444)
239616 Red Hat Update for kpatch-patch (RHSA-2021:3442)
281692 Fedora Security Update for kernel (FEDORA-2021-fe826f202e)
281693 Fedora Security Update for kernel (FEDORA-2021-95f2f1cfc7)
352871 Amazon Linux Security Advisory for kernel : ALAS-2021-1539
353097 Amazon Linux Security Advisory for kernel : ALAC2012-2021-033
353098 Amazon Linux Security Advisory for kmod-sfc : ALAC2012-2021-034
353099 Amazon Linux Security Advisory for kmod-mlx5 : ALAC2012-2021-035
390219 Oracle Managed Virtualization (VM) Server for x86 Security Update for kernel (OVMSA-2021-0030)
610430 Google Android September 2022 Security Patch Missing for Huawei EMUI
610432 Google Pixel Android August 2022 Security Patch Missing
670634 EulerOS Security Update for kernel (EulerOS-SA-2021-2392)
670707 EulerOS Security Update for kernel (EulerOS-SA-2021-2465)
670744 EulerOS Security Update for kernel (EulerOS-SA-2021-2502)
670772 EulerOS Security Update for kernel (EulerOS-SA-2021-2530)
671047 EulerOS Security Update for kernel (EulerOS-SA-2021-2588)
750844 SUSE Enterprise Linux Security Update for kernel (SUSE-SU-2021:2407-1)
750848 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2021:2416-1)(Sequoia)
750864 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2021:2421-1)
750868 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2021:2427-1)
750869 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2021:2422-1)
750877 OpenSUSE Security Update for the Linux Kernel (openSUSE-SU-2021:2427-1)
750880 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2021:2451-1)
750887 OpenSUSE Security Update for the Linux Kernel (openSUSE-SU-2021:1076-1)
750953 OpenSUSE Security Update for the Linux Kernel (openSUSE-SU-2021:2645-1)
750963 OpenSUSE Security Update for the Linux Kernel (openSUSE-SU-2021:2687-1)
751037 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 36 for SLE 12 SP3) (SUSE-SU-2021:2842-1)
900732 Common Base Linux Mariner (CBL-Mariner) Security Update for kernel (8877)
906192 Common Base Linux Mariner (CBL-Mariner) Security Update for kernel (8877-1)
940353 AlmaLinux Security Update for kernel (ALSA-2021:3057)
960074 Rocky Linux Security Update for kernel (RLSA-2021:3057)
960852 Rocky Linux Security Update for kernel-rt (RLSA-2021:3088)