CVE-2021-4202

Summary

A use-after-free flaw was found in nci_request in net/nfc/nci/core.c in NFC Controller Interface (NCI) in the Linux kernel. This flaw could allow a local attacker with user privileges to cause a data race problem while the device is getting removed, leading to a privilege escalation problem.

Affected Software

VendorProductVersion RangeStatus
n/akernelkernel 5.16 rc2affected

Weaknesses

  • CWE-362: CWE-362->CWE-416

ADP Enrichment

CVE Program Container

Additional References

References