5.5

CVE-2021-46979

EPSS 0.05%
Veröffentlicht 28.02.2024 09:15:37
Zuletzt bearbeitet 31.12.2024 16:02:49
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

iio: core: fix ioctl handlers removal

Currently ioctl handlers are removed twice. For the first time during
iio_device_unregister() then later on inside
iio_device_unregister_eventset() and iio_buffers_free_sysfs_and_mask().
Double free leads to kernel panic.

Fix this by not touching ioctl handlers list directly but rather
letting code responsible for registration call the matching cleanup
routine itself.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version >= 5.11 < 5.11.22

Linux ≫ Linux Kernel Version >= 5.12 < 5.12.5

Linux ≫ Linux Kernel Version5.13 Updaterc1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.05%	0.114

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-415 Double Free

The product calls free() twice on the same memory address, potentially leading to modification of unexpected memory locations.

https://git.kernel.org/stable/c/11e1cae5da4096552f7c091476cbadbc0d1817da

Patch

https://git.kernel.org/stable/c/901f84de0e16bde10a72d7eb2f2eb73fcde8fa1a

Patch

https://git.kernel.org/stable/c/ab6c935ba3a04317632f3b8b68675bdbaf395303

Patch

https://nvd.nist.gov/vuln/detail/CVE-2021-46979

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-46979

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-46979

EUVD