7.8

CVE-2021-47600

dm btree remove: fix use after free in rebalance_children()

In the Linux kernel, the following vulnerability has been resolved:

dm btree remove: fix use after free in rebalance_children()

Move dm_tm_unlock() after dm_tm_dec().
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version < 4.4.296
LinuxLinux Kernel Version >= 4.5 < 4.9.294
LinuxLinux Kernel Version >= 4.10 < 4.14.259
LinuxLinux Kernel Version >= 4.15 < 4.19.222
LinuxLinux Kernel Version >= 4.20 < 5.4.168
LinuxLinux Kernel Version >= 5.5 < 5.10.88
LinuxLinux Kernel Version >= 5.11 < 5.15.11
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.27% 0.185
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE-416 Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

https://git.kernel.org/stable/c/0e21e6cd5eebfc929ac5fa3b97ca2d4ace3cb6a3
Patch
https://git.kernel.org/stable/c/1b8d2789dad0005fd5e7d35dab26a8e1203fb6da
Patch
https://git.kernel.org/stable/c/293f957be5e39720778fb1851ced7f5fba6d51c3
Patch
https://git.kernel.org/stable/c/501ecd90efdc9b2edc6c28852ecd098a4adf8f00
Patch
https://git.kernel.org/stable/c/607beb420b3fe23b948a9bf447d993521a02fbbb
Patch
https://git.kernel.org/stable/c/66ea642af6fd4eacb5d0271a922130fcf8700424
Patch
https://git.kernel.org/stable/c/a48f6a2bf33734ec5669ee03067dfb6c5b4818d6
Patch
https://git.kernel.org/stable/c/b03abd0aa09c05099f537cb05b8460c4298f0861
Patch