CVE-2021-47357: atm: iphase: fix possible use-after-free in ia_module_exit()
First published: Tue May 21 2024(Updated: )
In the Linux kernel, the following vulnerability has been resolved: atm: iphase: fix possible use-after-free in ia_module_exit() This module's remove path calls del_timer(). However, that function does not wait until the timer handler finishes. This means that the timer handler may still be running after the driver's remove function has finished, which would result in a use-after-free. Fix by calling del_timer_sync(), which makes sure the timer handler has finished, and unable to re-schedule itself.
Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linux Kernel | <4.4.276 | |
| Linux Kernel | >=4.5<4.9.276 | |
| Linux Kernel | >=4.10<4.14.240 | |
| Linux Kernel | >=4.15<4.19.198 | |
| Linux Kernel | >=4.20<5.4.133 | |
| Linux Kernel | >=5.5<5.10.51 | |
| Linux Kernel | >=5.11<5.12.18 | |
| Linux Kernel | >=5.13<5.13.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://git.kernel.org/stable/c/9e161687855175334ca93c6c3ccb221731194479
- https://git.kernel.org/stable/c/a832ee2f2145f57443b2d565f8cb5490e8339f42
- https://git.kernel.org/stable/c/bcdd2be48edd8c6867fb44112cb8d18086beae29
- https://git.kernel.org/stable/c/89ce0b0747f319eb70f85bc820dcc43cebbd5417
- https://git.kernel.org/stable/c/c9172498d4d62c9b64e5fb37c1ee0343e65fe51b
- https://git.kernel.org/stable/c/e759ff76ebbbfcdcf83b6634c54dc47828573d8b
- https://git.kernel.org/stable/c/b58d246a058ae88484758cd4ab27b3180fd5ecf8
- https://git.kernel.org/stable/c/d1fb12412874c94ad037e11d0ecdd1140a439297
- https://git.kernel.org/stable/c/1c72e6ab66b9598cac741ed397438a52065a8f1f
Frequently Asked Questions
What is the severity of CVE-2021-47357?
CVE-2021-47357 has a medium severity rating due to its potential effect on system stability.
How do I fix CVE-2021-47357?
To resolve CVE-2021-47357, update to a version of the Linux kernel that is patched beyond the affected versions.
Which versions of the Linux kernel are affected by CVE-2021-47357?
CVE-2021-47357 affects Linux kernel versions prior to 4.4.276 and versions between 4.5 to 5.13.3.
What causes the vulnerability in CVE-2021-47357?
CVE-2021-47357 is caused by a use-after-free condition arising from the improper handling of timer deletion during module exit.
Can CVE-2021-47357 be exploited remotely?
CVE-2021-47357 does not appear to have direct remote exploitability as it involves local kernel operations.
- agent/title
- agent/references
- agent/weakness
- agent/description
- agent/first-publish-date
- agent/type
- agent/author
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/remedy
- agent/last-modified-date
- agent/softwarecombine
- agent/source
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/linux
- canonical/linux kernel
- version/linux kernel/4.5
- version/linux kernel/4.10
- version/linux kernel/4.15
- version/linux kernel/4.20
- version/linux kernel/5.5
- version/linux kernel/5.11
- version/linux kernel/5.13