CVE-2021-47328: scsi: iscsi: Fix conn use after free during resets
First published: Tue May 21 2024(Updated: )
In the Linux kernel, the following vulnerability has been resolved: scsi: iscsi: Fix conn use after free during resets If we haven't done a unbind target call we can race where iscsi_conn_teardown wakes up the EH thread and then frees the conn while those threads are still accessing the conn ehwait. We can only do one TMF per session so this just moves the TMF fields from the conn to the session. We can then rely on the iscsi_session_teardown->iscsi_remove_session->__iscsi_unbind_session call to remove the target and it's devices, and know after that point there is no device or scsi-ml callout trying to access the session.
Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linux Kernel | <4.19.198 | |
| Linux Kernel | >=4.20<5.4.134 | |
| Linux Kernel | >=5.5<5.10.52 | |
| Linux Kernel | >=5.11<5.12.19 | |
| Linux Kernel | >=5.13<5.13.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://git.kernel.org/stable/c/bf20d85a88384574fabb3d53ad62a8af57e7ab11
- https://git.kernel.org/stable/c/d04958a348e560938410e04a12fb99da9c7e6a00
- https://git.kernel.org/stable/c/89812e7957ab0746eab66ed6fc49d52bb4dca250
- https://git.kernel.org/stable/c/f0a031f7c55ffd944fead1ddaf2aa94df9a158c1
- https://git.kernel.org/stable/c/fa9542b35ceb4202e8f8d65f440529a63524dca9
- https://git.kernel.org/stable/c/ec29d0ac29be366450a7faffbcf8cba3a6a3b506
Frequently Asked Questions
What is the severity of CVE-2021-47328?
CVE-2021-47328 has been rated as a high severity vulnerability.
How do I fix CVE-2021-47328?
To fix CVE-2021-47328, update your Linux kernel to a version newer than 4.19.198, or within the specified safe ranges for other affected versions.
Which versions of Linux Kernel are affected by CVE-2021-47328?
CVE-2021-47328 affects Linux Kernel versions from 4.20 up to 5.4.134, 5.5 up to 5.10.52, 5.11 up to 5.12.19, and 5.13 up to 5.13.4.
What type of vulnerability is CVE-2021-47328?
CVE-2021-47328 is a use-after-free vulnerability related to SCSI iSCSI connections in the Linux kernel.
What are the potential impacts of CVE-2021-47328?
The exploitation of CVE-2021-47328 could lead to denial of service or execution of arbitrary code due to the unsafe memory access.
- agent/references
- agent/weakness
- agent/title
- agent/type
- agent/description
- agent/first-publish-date
- agent/author
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/remedy
- agent/last-modified-date
- agent/softwarecombine
- agent/source
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/linux
- canonical/linux kernel
- version/linux kernel/4.20
- version/linux kernel/5.5
- version/linux kernel/5.11
- version/linux kernel/5.13