CVE-2021-47123

EPSS 0.02%
Published 15.03.2024 21:15:07
Last modified 14.01.2025 15:02:28
Source 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Open
Login

In the Linux kernel, the following vulnerability has been resolved:

io_uring: fix ltout double free on completion race

Always remove linked timeout on io_link_timeout_fn() from the master
request link list, otherwise we may get use-after-free when first
io_link_timeout_fn() puts linked timeout in the fail path, and then
will be found and put on master's free.

Affected products Warnungen 0 Metrics 2 CWE 2 References 5

Data is provided by the National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version >= 5.11 < 5.12.10

Linux ≫ Linux Kernel Version5.13 Updaterc1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.02%	0.027

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-415 Double Free

The product calls free() twice on the same memory address, potentially leading to modification of unexpected memory locations.

CWE-416 Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

https://git.kernel.org/stable/c/1f64f5e903b9d1d157875721e02adadc9d6f0a5d

Patch

https://git.kernel.org/stable/c/447c19f3b5074409c794b350b10306e1da1ef4ba

Patch

https://nvd.nist.gov/vuln/detail/CVE-2021-47123

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-47123

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-47123

EUVD