LinuxCVELIST:CVE-2021-47521CVE-2021-47521 can: sja1000: fix use after free in ems_pcmcia_add_card()
In the Linux kernel, the following vulnerability has been resolved:
can: sja1000: fix use after free in ems_pcmcia_add_card()
If the last channel is not available then “dev” is freed. Fortunately,
we can just use “pdev->irq” instead.
Also we should check if at least one channel was set up.
CNA Affected
[
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "unaffected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"drivers/net/can/sja1000/ems_pcmcia.c"
],
"versions": [
{
"version": "fd734c6f25ae",
"lessThan": "cbd86110546f",
"status": "affected",
"versionType": "git"
},
{
"version": "fd734c6f25ae",
"lessThan": "1dd5b819f7e4",
"status": "affected",
"versionType": "git"
},
{
"version": "fd734c6f25ae",
"lessThan": "c8718026ba28",
"status": "affected",
"versionType": "git"
},
{
"version": "fd734c6f25ae",
"lessThan": "ccf070183e46",
"status": "affected",
"versionType": "git"
},
{
"version": "fd734c6f25ae",
"lessThan": "1a295fea90e1",
"status": "affected",
"versionType": "git"
},
{
"version": "fd734c6f25ae",
"lessThan": "923f4dc5df67",
"status": "affected",
"versionType": "git"
},
{
"version": "fd734c6f25ae",
"lessThan": "474f9a8534f5",
"status": "affected",
"versionType": "git"
},
{
"version": "fd734c6f25ae",
"lessThan": "3ec6ca6b1a8e",
"status": "affected",
"versionType": "git"
}
]
},
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "affected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"drivers/net/can/sja1000/ems_pcmcia.c"
],
"versions": [
{
"version": "3.2",
"status": "affected"
},
{
"version": "0",
"lessThan": "3.2",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "4.4.295",
"lessThanOrEqual": "4.4.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "4.9.293",
"lessThanOrEqual": "4.9.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "4.14.258",
"lessThanOrEqual": "4.14.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "4.19.221",
"lessThanOrEqual": "4.19.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.4.165",
"lessThanOrEqual": "5.4.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.10.85",
"lessThanOrEqual": "5.10.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.15.8",
"lessThanOrEqual": "5.15.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.16",
"lessThanOrEqual": "*",
"status": "unaffected",
"versionType": "original_commit_for_fix"
}
]
}
]References
git.kernel.org/stable/c/1a295fea90e1acbe80c6d4940f5ff856edcd6bec
git.kernel.org/stable/c/1dd5b819f7e406dc15bbc7670596ff25261aaa2a
git.kernel.org/stable/c/3ec6ca6b1a8e64389f0212b5a1b0f6fed1909e45
git.kernel.org/stable/c/474f9a8534f5f89841240a7e978bafd6e1e039ce
git.kernel.org/stable/c/923f4dc5df679f678e121c20bf2fd70f7bf3e288
git.kernel.org/stable/c/c8718026ba287168ff9ad0ccc4f9a413062cba36
git.kernel.org/stable/c/cbd86110546f7f730a1f5d7de56c944a336c15c4
git.kernel.org/stable/c/ccf070183e4655824936c0f96c4a2bcca93419aa
Related
