CVE-2021-47301

Published: May 21, 2024Modified: Jun 17, 2026

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

In the Linux kernel, the following vulnerability has been resolved: igb: Fix use-after-free error during reset Cleans the next descriptor to watch (next_to_watch) when cleaning the TX ring. Failure to do so can cause invalid memory accesses. If igb_poll() runs while the controller is reset this can lead to the driver try to free a skb that was already freed. (The crash is harder to reproduce with the igb driver, but the same potential problem exists as the code is identical to igc)

Affected (6)

Products: Linux: Linux Kernel

1 product

Configuration A

6 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	From 4.12 to 4.14.241
Linux Linux Kernel	From 4.15 to 4.19.199
Linux Linux Kernel	From 4.20 to 5.4.136
Linux Linux Kernel	From 5.11 to 5.13.6
Linux Linux Kernel	From 5.5 to 5.10.54
Linux Linux Kernel	Version 5.14 rc1

Related CWEs

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

References (12)

https://git.kernel.org/stable/c/7b292608db23ccbbfbfa50cdb155d01725d7a52e

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/88e0720133d42d34851c8721cf5f289a50a8710f

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/8e24c12f2ff6d32fd9f057382f08e748ec97194c

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/d3ccb18ed5ac3283c7b31ecc685b499e580d5492

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/d7367f781e5a9ca5df9082b15b272b55e76931f8

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/f153664d8e70c11d0371341613651e1130e20240

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/7b292608db23ccbbfbfa50cdb155d01725d7a52e

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/88e0720133d42d34851c8721cf5f289a50a8710f

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/8e24c12f2ff6d32fd9f057382f08e748ec97194c

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/d3ccb18ed5ac3283c7b31ecc685b499e580d5492

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/d7367f781e5a9ca5df9082b15b272b55e76931f8

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/f153664d8e70c11d0371341613651e1130e20240

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

Timeline

No history available yet.