CVE-2021-47301

2024-05-2115:15:17

416baaa9-dc9f-4396-8d5f-8c081fb06d67

web.nvd.nist.gov

cve-2021-47301

igb driver

linux kernel

use-after-free

memory access

6.9 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

10.4%

JSON

In the Linux kernel, the following vulnerability has been resolved:

igb: Fix use-after-free error during reset

Cleans the next descriptor to watch (next_to_watch) when cleaning the
TX ring.

Failure to do so can cause invalid memory accesses. If igb_poll() runs
while the controller is reset this can lead to the driver try to free
a skb that was already freed.

(The crash is harder to reproduce with the igb driver, but the same
potential problem exists as the code is identical to igc)

Affected configurations

Vulners

Node

linuxlinux_kernelRange4.12–4.14.241

linuxlinux_kernelRange4.15.0–4.19.199

linuxlinux_kernelRange4.20.0–5.4.136

linuxlinux_kernelRange5.5.0–5.10.54

linuxlinux_kernelRange5.11.0–5.13.6

linuxlinux_kernelRange5.14.0≥

CNA Affected

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/net/ethernet/intel/igb/igb_main.c"
    ],
    "versions": [
      {
        "version": "7cc6fd4c60f2",
        "lessThan": "d7367f781e5a",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "7cc6fd4c60f2",
        "lessThan": "d3ccb18ed5ac",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "7cc6fd4c60f2",
        "lessThan": "88e0720133d4",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "7cc6fd4c60f2",
        "lessThan": "f153664d8e70",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "7cc6fd4c60f2",
        "lessThan": "8e24c12f2ff6",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "7cc6fd4c60f2",
        "lessThan": "7b292608db23",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/net/ethernet/intel/igb/igb_main.c"
    ],
    "versions": [
      {
        "version": "4.12",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "4.12",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "4.14.241",
        "lessThanOrEqual": "4.14.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "4.19.199",
        "lessThanOrEqual": "4.19.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.4.136",
        "lessThanOrEqual": "5.4.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.10.54",
        "lessThanOrEqual": "5.10.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.13.6",
        "lessThanOrEqual": "5.13.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.14",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]