7.8

CVE-2021-47669

can: vxcan: vxcan_xmit: fix use after free bug

In the Linux kernel, the following vulnerability has been resolved:

can: vxcan: vxcan_xmit: fix use after free bug

After calling netif_rx_ni(skb), dereferencing skb is unsafe.
Especially, the canfd_frame cfd which aliases skb memory is accessed
after the netif_rx_ni().
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 4.12 < 4.14.218
LinuxLinux Kernel Version >= 4.15 < 4.19.171
LinuxLinux Kernel Version >= 4.20 < 5.4.93
LinuxLinux Kernel Version >= 5.5 < 5.10.11
LinuxLinux Kernel Version5.11 Updaterc1
LinuxLinux Kernel Version5.11 Updaterc2
LinuxLinux Kernel Version5.11 Updaterc3
LinuxLinux Kernel Version5.11 Updaterc4
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.17% 0.063
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE-416 Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

https://git.kernel.org/stable/c/6d6dcf2399cdd26f7f5426ca8dd8366b7f2ca105
Patch
https://git.kernel.org/stable/c/9b820875a32a3443d67bfd368e93038354e98052
Patch
https://git.kernel.org/stable/c/a24476b37167816e6352ca1a2cf3769847774f70
Patch
https://git.kernel.org/stable/c/e771a874076115df8bff27d325edfd2340e4ec69
Patch
https://git.kernel.org/stable/c/75854cad5d80976f6ea0f0431f8cedd3bcc475cb
Patch