Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2021-47123HistoryMar 15, 2024 - 9:15 p.m.
CVE-2021-47123
2024-03-1521:15:07
Debian Security Bug Tracker
security-tracker.debian.org
8
linux kernel
io_uring
vulnerability
double free
completion race
In the Linux kernel, the following vulnerability has been resolved: io_uring: fix ltout double free on completion race Always remove linked timeout on io_link_timeout_fn() from the master request link list, otherwise we may get use-after-free when first io_link_timeout_fn() puts linked timeout in the fail path, and then will be found and put on master’s free.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | linux | < 6.1.94-1 | linux_6.1.94-1_all.deb |
| Debian | 11 | all | linux | < 5.10.218-1 | linux_5.10.218-1_all.deb |
| Debian | 999 | all | linux | < 6.9.7-1 | linux_6.9.7-1_all.deb |
| Debian | 13 | all | linux | < 6.8.12-1 | linux_6.8.12-1_all.deb |
Related
ubuntucve
ubuntucve
CVE-2021-47123
2024-03-15 00:00:00
cvelist
cvelist
CVE-2021-47123 io_uring: fix ltout double free on completion race
2024-03-15 20:14:28
redhatcve
redhatcve
CVE-2021-47123
2024-03-16 18:45:54
cve
cve
CVE-2021-47123
2024-03-15 21:15:07
nvd
nvd
CVE-2021-47123
2024-03-15 21:15:07
nessus
nessus
RHEL 6 : kernel (Unpatched Vulnerability)
2024-05-11 00:00:00
RHEL 7 : kernel (Unpatched Vulnerability)
2024-05-11 00:00:00