Privilege Escalation via Use-After-Free in Linux Kernel CAN ISOTP SF_BROADCAST Support

CVE-2021-32606 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

In the Linux kernel 5.11 through 5.12.2, isotp_setsockopt in net/can/isotp.c allows privilege escalation to root by leveraging a use-after-free. (This does not affect earlier versions that lack CAN ISOTP SF_BROADCAST support.)

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.