CVE-2021-39685
Description
In various setup methods of the USB gadget subsystem, there is a possible out of bounds write due to an incorrect flag check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-210292376References: Upstream kernel
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
1.01
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Linux kernel (USN-5294-1) linux-image-oem_5.4.0.100.104_amd64.deb | Linux |
| Linux kernel (USN-5294-1) linux-image-generic_5.4.0.100.104_amd64.deb | Linux |
| Linux kernel (USN-5294-1) linux-image-virtual_5.4.0.100.104_amd64.deb | Linux |
| Linux kernel (USN-5294-1) linux-image-oem-osp1_5.4.0.100.104_amd64.deb | Linux |
| Linux kernel (USN-5294-1) linux-image-lowlatency_5.4.0.100.104_amd64.deb | Linux |
| Linux kernel (USN-5294-1) linux-image-5.4.0-100-generic_5.4.0-100.113_amd64.deb | Linux |
| Linux kernel (USN-5294-1) linux-image-5.4.0-100-lowlatency_5.4.0-100.113_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-aws_5.4.0.1066.48_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-gcp_5.4.0.1065.50_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-ibm_5.4.0.1015.16_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-ibm_5.4.0.1015.32_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-kvm_5.4.0.1056.55_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-oem_5.4.0.100.113~18.04.87_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-azure_5.4.0.1070.49_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-gkeop_5.4.0.1034.37_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-oracle_5.4.0.1064.68~18.04.43_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-oem-osp1_5.4.0.100.113~18.04.87_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-azure-fde_5.4.0.1070.73+cvm1.16_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-gkeop-5.4_5.4.0.1034.37_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-gkeop-5.4_5.4.0.1034.35~18.04.34_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-aws-lts-20.04_5.4.0.1066.68_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-gcp-lts-20.04_5.4.0.1065.75_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-ibm-lts-20.04_5.4.0.1015.16_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-5.4.0-1015-ibm_5.4.0-1015.16_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-5.4.0-1015-ibm_5.4.0-1015.16~18.04.1_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-5.4.0-1056-kvm_5.4.0-1056.58_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-5.4.0-1065-gcp_5.4.0-1065.69_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-5.4.0-1065-gcp_5.4.0-1065.69~18.04.1_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-5.4.0-1066-aws_5.4.0-1066.69_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-azure-lts-20.04_5.4.0.1070.68_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-5.4.0-1034-gkeop_5.4.0-1034.35_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-5.4.0-1034-gkeop_5.4.0-1034.35~18.04.1_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-5.4.0-1070-azure_5.4.0-1070.73_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-5.4.0-1070-azure_5.4.0-1070.73~18.04.1_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-oracle-lts-20.04_5.4.0.1064.64_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-5.4.0-100-generic_5.4.0-100.113~18.04.1_i386.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-5.4.0-100-generic_5.4.0-100.113~18.04.1_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-5.4.0-1064-oracle_5.4.0-1064.68_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-5.4.0-1064-oracle_5.4.0-1064.68~18.04.1_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-generic-hwe-18.04_5.4.0.100.113~18.04.87_i386.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-generic-hwe-18.04_5.4.0.100.113~18.04.87_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-virtual-hwe-18.04_5.4.0.100.113~18.04.87_i386.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-virtual-hwe-18.04_5.4.0.100.113~18.04.87_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-5.4.0-100-lowlatency_5.4.0-100.113~18.04.1_i386.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-5.4.0-100-lowlatency_5.4.0-100.113~18.04.1_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-5.4.0-1070-azure-fde_5.4.0-1070.73+cvm1.1_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-lowlatency-hwe-18.04_5.4.0.100.113~18.04.87_i386.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-5294-2) linux-image-lowlatency-hwe-18.04_5.4.0.100.113~18.04.87_amd64.deb | Linux |
| Linux kernel (USN-5298-1) linux-image-kvm_4.15.0.1107.103_amd64.deb | Linux |
| Linux kernel (USN-5298-1) linux-image-generic_4.15.0.169.158_i386.deb | Linux |
| Linux kernel (USN-5298-1) linux-image-generic_4.15.0.169.158_amd64.deb | Linux |
| Linux kernel (USN-5298-1) linux-image-virtual_4.15.0.169.158_i386.deb | Linux |
| Linux kernel (USN-5298-1) linux-image-virtual_4.15.0.169.158_amd64.deb | Linux |
| Linux kernel (USN-5298-1) linux-image-dell300x_4.15.0.1035.37_amd64.deb | Linux |
| Linux kernel (USN-5298-1) linux-image-lowlatency_4.15.0.169.158_i386.deb | Linux |
| Linux kernel (USN-5298-1) linux-image-lowlatency_4.15.0.169.158_amd64.deb | Linux |
| Linux kernel (USN-5298-1) linux-image-aws-lts-18.04_4.15.0.1121.124_amd64.deb | Linux |
| Linux kernel (USN-5298-1) linux-image-gcp-lts-18.04_4.15.0.1116.135_amd64.deb | Linux |
| Linux kernel (USN-5298-1) linux-image-4.15.0-1107-kvm_4.15.0-1107.109_amd64.deb | Linux |
| Linux kernel (USN-5298-1) linux-image-4.15.0-1116-gcp_4.15.0-1116.130_amd64.deb | Linux |
| Linux kernel (USN-5298-1) linux-image-azure-lts-18.04_4.15.0.1131.104_amd64.deb | Linux |
| Linux kernel (USN-5298-1) linux-image-oracle-lts-18.04_4.15.0.1087.97_amd64.deb | Linux |
| Linux kernel (USN-5298-1) linux-image-4.15.0-1131-azure_4.15.0-1131.144_amd64.deb | Linux |
| Linux kernel (USN-5298-1) linux-image-4.15.0-1087-oracle_4.15.0-1087.95_amd64.deb | Linux |
| Linux kernel (USN-5298-1) linux-image-4.15.0-169-generic_4.15.0-169.177_i386.deb | Linux |
| Linux kernel (USN-5298-1) linux-image-4.15.0-169-generic_4.15.0-169.177_amd64.deb | Linux |
| Linux kernel (USN-5298-1) linux-image-4.15.0-1035-dell300x_4.15.0-1035.40_amd64.deb | Linux |
| Linux kernel (USN-5298-1) linux-image-4.15.0-169-lowlatency_4.15.0-169.177_i386.deb | Linux |
| Linux kernel (USN-5298-1) linux-image-4.15.0-169-lowlatency_4.15.0-169.177_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-aws_5.13.0.1019.20_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-aws_5.13.0.1022.24~20.04.15_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-gcp_5.13.0.1021.19_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-gke_5.13.0.1021.19_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-kvm_5.13.0.1018.18_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-generic_5.13.0.37.46_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-virtual_5.13.0.37.46_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-oem-20.04_5.13.0.37.46_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-lowlatency_5.13.0.37.46_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-5.13.0-1018-kvm_5.13.0-1018.19_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-5.13.0-1019-aws_5.13.0-1019.21_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-5.13.0-1019-aws_5.13.0-1019.21~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-5.13.0-1021-gcp_5.13.0-1021.25_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-5.13.0-37-generic_5.13.0-37.42_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-5.13.0-37-generic_5.13.0-37.42~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-generic-hwe-20.04_5.13.0.37.42~20.04.22_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-virtual-hwe-20.04_5.13.0.37.42~20.04.22_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-5.13.0-37-lowlatency_5.13.0-37.42_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-5.13.0-37-lowlatency_5.13.0-37.42~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-lowlatency-hwe-20.04_5.13.0.37.42~20.04.22_amd64.deb | Linux |
| Kernel-uek update (ELSA-2022-9244) kernel-uek-5.4.17-2136.305.5.3.el7uek.x86_64.rpm | Linux |
| Kernel-uek-debug update (ELSA-2022-9244) kernel-uek-debug-5.4.17-2136.305.5.3.el7uek.x86_64.rpm | Linux |
| Kernel-uek-debug-devel update (ELSA-2022-9244) kernel-uek-debug-devel-5.4.17-2136.305.5.3.el7uek.x86_64.rpm | Linux |
| Kernel-uek-devel update (ELSA-2022-9244) kernel-uek-devel-5.4.17-2136.305.5.3.el7uek.x86_64.rpm | Linux |
| Kernel-uek-doc update (ELSA-2022-9244) kernel-uek-doc-5.4.17-2136.305.5.3.el7uek.noarch.rpm | Linux |
| Kernel-uek-tools update (ELSA-2022-9244) kernel-uek-tools-5.4.17-2136.305.5.3.el7uek.x86_64.rpm | Linux |
| Kernel-uek update (ELSA-2022-9244) kernel-uek-5.4.17-2136.305.5.3.el8uek.x86_64.rpm | Linux |
| Kernel-uek-debug update (ELSA-2022-9244) kernel-uek-debug-5.4.17-2136.305.5.3.el8uek.x86_64.rpm | Linux |
| Kernel-uek-debug-devel update (ELSA-2022-9244) kernel-uek-debug-devel-5.4.17-2136.305.5.3.el8uek.x86_64.rpm | Linux |
| Kernel-uek-devel update (ELSA-2022-9244) kernel-uek-devel-5.4.17-2136.305.5.3.el8uek.x86_64.rpm | Linux |
| Kernel-uek-doc update (ELSA-2022-9244) kernel-uek-doc-5.4.17-2136.305.5.3.el8uek.noarch.rpm | Linux |
| Kernel-uek-container update (ELSA-2022-9245) kernel-uek-container-5.4.17-2136.305.5.3.el8.x86_64.rpm | Linux |
| Kernel-uek-container-debug update (ELSA-2022-9245) kernel-uek-container-debug-5.4.17-2136.305.5.3.el8.x86_64.rpm | Linux |
| Linux kernel for Microsoft Azure cloud systems (USN-5368-1) linux-image-azure_5.13.0.1021.24~20.04.10_amd64.deb | Linux |
| Linux kernel for Microsoft Azure cloud systems (USN-5368-1) linux-image-oracle_5.13.0.1025.30~20.04.1_amd64.deb | Linux |
| Linux kernel for Microsoft Azure cloud systems (USN-5368-1) linux-image-5.13.0-1021-azure_5.13.0-1021.24~20.04.1_amd64.deb | Linux |
| Linux kernel for Microsoft Azure cloud systems (USN-5368-1) linux-image-5.13.0-1025-oracle_5.13.0-1025.30~20.04.1_amd64.deb | Linux |
| Kernel-uek-container update (ELSA-2022-9999) kernel-uek-container-5.4.17-2136.313.6.el8.x86_64.rpm | Linux |
| Kernel-uek-container-debug update (ELSA-2022-9999) kernel-uek-container-debug-5.4.17-2136.313.6.el8.x86_64.rpm | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-5297-1) linux-image-5.4.0-1063-gke_5.4.0-1063.66~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-5337-1) linux-image-5.13.0-1021-gcp_5.13.0-1021.25~20.04.1_amd64.deb | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234