What is the severity of CVE-2021-46998?

CVE-2021-46998 has been classified with medium severity due to its potential impact on system stability.

How do I fix CVE-2021-46998?

To fix CVE-2021-46998, upgrade your Linux kernel to a version that includes the patch for this vulnerability.

What systems are affected by CVE-2021-46998?

CVE-2021-46998 affects multiple versions of the Linux kernel ranging from 4.16 to 5.12.5.

What type of vulnerability is CVE-2021-46998?

CVE-2021-46998 is categorized as a use-after-free vulnerability in the Linux kernel's ethernet driver.

Is CVE-2021-46998 actively exploited in the wild?

As of now, there are no public reports indicating that CVE-2021-46998 is being actively exploited in the wild.

Vulnerability/
CVE-2021-46998

high

7.8

CWE

416

28/2/2024

19/12/2024

CVE-2021-46998: ethernet:enic: Fix a use after free bug in enic_hard_start_xmit

First published: Wed Feb 28 2024(Updated: )

In the Linux kernel, the following vulnerability has been resolved: ethernet:enic: Fix a use after free bug in enic_hard_start_xmit In enic_hard_start_xmit, it calls enic_queue_wq_skb(). Inside enic_queue_wq_skb, if some error happens, the skb will be freed by dev_kfree_skb(skb). But the freed skb is still used in skb_tx_timestamp(skb). My patch makes enic_queue_wq_skb() return error and goto spin_unlock() incase of error. The solution is provided by Govind. See https://lkml.org/lkml/2021/4/30/961.

Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Affected Software	Affected Version	How to fix
Linux Kernel	>=4.16<4.19.191
Linux Kernel	>=4.20<5.4.120
Linux Kernel	>=5.5<5.10.38
Linux Kernel	>=5.11<5.11.22
Linux Kernel	>=5.12<5.12.5

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2021-46998?
CVE-2021-46998 has been classified with medium severity due to its potential impact on system stability.
How do I fix CVE-2021-46998?
To fix CVE-2021-46998, upgrade your Linux kernel to a version that includes the patch for this vulnerability.
What systems are affected by CVE-2021-46998?
CVE-2021-46998 affects multiple versions of the Linux kernel ranging from 4.16 to 5.12.5.
What type of vulnerability is CVE-2021-46998?
CVE-2021-46998 is categorized as a use-after-free vulnerability in the Linux kernel's ethernet driver.
Is CVE-2021-46998 actively exploited in the wild?
As of now, there are no public reports indicating that CVE-2021-46998 is being actively exploited in the wild.

agent/references
agent/title
agent/type
agent/description
agent/first-publish-date
agent/event
agent/author
agent/severity
agent/remedy
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/weakness
agent/last-modified-date
agent/source
agent/tags
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/linux
canonical/linux kernel
version/linux kernel/4.16
version/linux kernel/4.20
version/linux kernel/5.5
version/linux kernel/5.11
version/linux kernel/5.12

Frequently Asked Questions

What is the severity of CVE-2021-46998?
CVE-2021-46998 has been classified with medium severity due to its potential impact on system stability.
How do I fix CVE-2021-46998?
To fix CVE-2021-46998, upgrade your Linux kernel to a version that includes the patch for this vulnerability.
What systems are affected by CVE-2021-46998?
CVE-2021-46998 affects multiple versions of the Linux kernel ranging from 4.16 to 5.12.5.
What type of vulnerability is CVE-2021-46998?
CVE-2021-46998 is categorized as a use-after-free vulnerability in the Linux kernel's ethernet driver.
Is CVE-2021-46998 actively exploited in the wild?
As of now, there are no public reports indicating that CVE-2021-46998 is being actively exploited in the wild.

CVE-2021-46998: ethernet:enic: Fix a use after free bug in enic_hard_start_xmit

Remedy

Remedy

Remedy

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2021-46998?

How do I fix CVE-2021-46998?

What systems are affected by CVE-2021-46998?

What type of vulnerability is CVE-2021-46998?

Is CVE-2021-46998 actively exploited in the wild?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2021-46998?

How do I fix CVE-2021-46998?

What systems are affected by CVE-2021-46998?

What type of vulnerability is CVE-2021-46998?

Is CVE-2021-46998 actively exploited in the wild?