Unrated severityNVD Advisory· Published Jul 9, 2021· Updated Aug 3, 2024

CVE-2021-3612

Description

An out-of-bounds memory write flaw was found in the Linux kernel's joystick devices subsystem in versions before 5.9-rc1, in the way the user calls ioctl JSIOCSBTNMAP. This flaw allows a local user to crash the system or possibly escalate their privileges on the system. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.

Affected products

114

Linux/Linux kerneldescription
osv-coords113 versions
pkg:rpm/almalinux/bpftool pkg:rpm/almalinux/kernel pkg:rpm/almalinux/kernel-abi-stablelists pkg:rpm/almalinux/kernel-core pkg:rpm/almalinux/kernel-cross-headers pkg:rpm/almalinux/kernel-debug pkg:rpm/almalinux/kernel-debug-core pkg:rpm/almalinux/kernel-debug-devel pkg:rpm/almalinux/kernel-debug-modules pkg:rpm/almalinux/kernel-debug-modules-extra pkg:rpm/almalinux/kernel-devel pkg:rpm/almalinux/kernel-doc pkg:rpm/almalinux/kernel-headers pkg:rpm/almalinux/kernel-modules pkg:rpm/almalinux/kernel-modules-extra pkg:rpm/almalinux/kernel-tools pkg:rpm/almalinux/kernel-tools-libs pkg:rpm/almalinux/kernel-tools-libs-devel pkg:rpm/almalinux/perf pkg:rpm/almalinux/python3-perf pkg:rpm/opensuse/dtb-aarch64&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/kernel-64kb&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/kernel-azure&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/kernel-debug&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-debug&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/kernel-default-base&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-default-base&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/kernel-default&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-default&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/kernel-docs&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-docs&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/kernel-kvmsmall&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-kvmsmall&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/kernel-obs-build&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-obs-build&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/kernel-obs-qa&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-obs-qa&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/kernel-preempt&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-preempt&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/kernel-source-azure&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/kernel-source&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-source&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/kernel-syms-azure&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/kernel-syms&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/kernel-syms&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/kernel-zfcpdump&distro=openSUSE%20Leap%2015.3 pkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3 pkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP2 pkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP3 pkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5 pkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Micro%205.0 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2012%20SP5 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP2 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP3 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2012%20SP5 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP2 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP3 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Micro%205.0 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Legacy%2015%20SP2 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Legacy%2015%20SP3 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP5 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP2 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP3 pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP2 pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP3 pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5 pkg:rpm/suse/kernel-livepatch-SLE15-SP2_Update_17&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP2 pkg:rpm/suse/kernel-livepatch-SLE15-SP3_Update_5&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP3 pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP2 pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP3 pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5 pkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2 pkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3 pkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP2 pkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP3 pkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP2 pkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP3 pkg:rpm/suse/kernel-rt_debug&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2012%20SP5 pkg:rpm/suse/kernel-rt_debug&distro=SUSE%20Real%20Time%20Module%2015%20SP2 pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.0 pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2012%20SP5 pkg:rpm/suse/kernel-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP2 pkg:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP2 pkg:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP3 pkg:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5 pkg:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP2 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP3 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5 pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2012%20SP5 pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP2 pkg:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP2 pkg:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP3 pkg:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5 pkg:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP2 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP3 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5 pkg:rpm/suse/kernel-syms-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2012%20SP5 pkg:rpm/suse/kernel-syms-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP2 pkg:rpm/suse/kernel-zfcpdump&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3 pkg:rpm/suse/kgraft-patch-SLE12-SP5_Update_21&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2012%20SP5
< 4.18.0-372.9.1.el8+ 112 more
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 4.18.0-372.9.1.el8
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-38.17.1
- (no CPE)range: < 5.3.18-lp152.84.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-lp152.84.1.lp152.8.38.1
- (no CPE)range: < 5.3.18-59.19.1.18.10.1
- (no CPE)range: < 5.3.18-lp152.84.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-lp152.84.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-lp152.84.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-lp152.84.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-lp152.84.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-lp152.84.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-38.17.1
- (no CPE)range: < 5.3.18-lp152.84.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-38.17.1
- (no CPE)range: < 5.3.18-lp152.84.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-18.58.1
- (no CPE)range: < 5.3.18-38.17.1
- (no CPE)range: < 4.12.14-16.65.1
- (no CPE)range: < 4.12.14-16.65.1
- (no CPE)range: < 5.3.18-24.75.3.9.34.3
- (no CPE)range: < 5.3.18-24.75.3.9.34.3
- (no CPE)range: < 5.3.18-59.19.1.18.10.1
- (no CPE)range: < 4.12.14-122.80.1
- (no CPE)range: < 5.3.18-24.75.3
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 4.12.14-122.80.1
- (no CPE)range: < 5.3.18-24.75.3
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-24.75.3
- (no CPE)range: < 5.3.18-24.75.3
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-24.75.3
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 4.12.14-122.80.1
- (no CPE)range: < 4.12.14-122.80.1
- (no CPE)range: < 4.12.14-122.80.1
- (no CPE)range: < 5.3.18-24.75.3
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-24.75.2
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 4.12.14-122.80.1
- (no CPE)range: < 1-5.3.3
- (no CPE)range: < 1-7.3.1
- (no CPE)range: < 5.3.18-24.75.3
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 4.12.14-122.80.1
- (no CPE)range: < 5.3.18-24.75.3
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-24.75.3
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-24.75.3
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 4.12.14-10.54.1
- (no CPE)range: < 5.3.18-45.3
- (no CPE)range: < 5.3.18-45.3
- (no CPE)range: < 4.12.14-10.54.1
- (no CPE)range: < 5.3.18-45.3
- (no CPE)range: < 5.3.18-18.58.1
- (no CPE)range: < 5.3.18-38.17.1
- (no CPE)range: < 4.12.14-16.65.1
- (no CPE)range: < 4.12.14-16.65.1
- (no CPE)range: < 5.3.18-24.75.2
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 5.3.18-24.75.2
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 4.12.14-122.80.1
- (no CPE)range: < 4.12.14-122.80.1
- (no CPE)range: < 4.12.14-10.54.1
- (no CPE)range: < 5.3.18-45.3
- (no CPE)range: < 5.3.18-18.58.1
- (no CPE)range: < 5.3.18-38.17.1
- (no CPE)range: < 4.12.14-16.65.1
- (no CPE)range: < 4.12.14-16.65.1
- (no CPE)range: < 5.3.18-24.75.1
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 4.12.14-122.80.1
- (no CPE)range: < 4.12.14-122.80.1
- (no CPE)range: < 4.12.14-10.54.1
- (no CPE)range: < 5.3.18-45.2
- (no CPE)range: < 5.3.18-59.19.1
- (no CPE)range: < 1-8.3.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YKGI562LFV5MESTMVTCG5RORSBT6NGBN/mitrevendor-advisoryx_refsource_FEDORA
bugzilla.redhat.com/show_bug.cgimitrex_refsource_MISC
lists.debian.org/debian-lts-announce/2021/10/msg00010.htmlmitremailing-listx_refsource_MLIST
lists.debian.org/debian-lts-announce/2021/12/msg00012.htmlmitremailing-listx_refsource_MLIST
lore.kernel.org/linux-input/20210620120030.1513655-1-avlarkin82%40gmail.com/mitrex_refsource_MISC
security.netapp.com/advisory/ntap-20210805-0005/mitrex_refsource_CONFIRM
www.oracle.com/security-alerts/cpujul2022.htmlmitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000