7.8

CVE-2021-47571

staging: rtl8192e: Fix use after free in _rtl92e_pci_disconnect()

In the Linux kernel, the following vulnerability has been resolved:

staging: rtl8192e: Fix use after free in _rtl92e_pci_disconnect()

The free_rtllib() function frees the "dev" pointer so there is use
after free on the next line.  Re-arrange things to avoid that.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 3.2 < 4.4.294
LinuxLinux Kernel Version >= 4.5 < 4.9.292
LinuxLinux Kernel Version >= 4.10 < 4.14.257
LinuxLinux Kernel Version >= 4.15 < 4.19.219
LinuxLinux Kernel Version >= 4.20 < 5.4.163
LinuxLinux Kernel Version >= 5.5 < 5.10.83
LinuxLinux Kernel Version >= 5.11 < 5.15.6
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.22% 0.117
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE-416 Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

https://git.kernel.org/stable/c/2e1ec01af2c7139c6a600bbfaea1a018b35094b6
Patch
https://git.kernel.org/stable/c/8d0163cec7de995f9eb9c3128c83fb84f0cb1c64
Patch
https://git.kernel.org/stable/c/9186680382934b0e7529d3d70dcc0a21d087683b
Patch
https://git.kernel.org/stable/c/b535917c51acc97fb0761b1edec85f1f3d02bda4
Patch
https://git.kernel.org/stable/c/bca19bb2dc2d89ce60c4a4a6e59609d4cf2e13ef
Patch
https://git.kernel.org/stable/c/c0ef0e75a858cbd8618b473f22fbca36106dcf82
Patch
https://git.kernel.org/stable/c/d43aecb694b10db9a4228ce2d38b5ae8de374443
Patch
https://git.kernel.org/stable/c/e27ee2f607fe6a9b923ef1fc65461c0613c97594
Patch