canonical ubuntu-linux CVE-2021-3752 vulnerability in Canonical and Other Products
Published on February 16, 2022

product logo product logo product logo product logo product logo product logo
A use-after-free flaw was found in the Linux kernels Bluetooth subsystem in the way user calls connect to the socket and disconnect simultaneously due to a race condition. This flaw allows a user to crash the system or escalate their privileges. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.

Vendor Advisory NVD

Weakness Type

What is a Dangling pointer Vulnerability?

Referencing memory after it has been freed can cause a program to crash, use unexpected values, or execute code.

CVE-2021-3752 has been classified to as a Dangling pointer vulnerability or weakness.


Products Associated with CVE-2021-3752

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2021-3752 are published in these products:

Canonical Ubuntu Linux
 
Linux Kernel
 
Red Hat 3scale
 
Red Hat Virtualization Host
 
Fedora Project Fedora
 
Red Hat Enterprise Linux (RHEL)
 
Red Hat Enterprise Linux For Real Time
 
Red Hat Enterprise Linux Real Time Nfv
 
Debian Linux
 
Oracle Communications Cloud Native Core Binding Support Function
 
Oracle Communications Cloud Native Core Policy
 
Oracle Communications Cloud Native Core Network Exposure Function
 

Exploit Probability

EPSS
0.04%
Percentile
11.84%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.