Lucene search
416baaa9-dc9f-4396-8d5f-8c081fb06d67NVD:CVE-2021-47132HistoryMar 15, 2024 - 9:15 p.m.
CVE-2021-47132
2024-03-1521:15:07
416baaa9-dc9f-4396-8d5f-8c081fb06d67
web.nvd.nist.gov
linux kernel
mptcp
sk_forward_memory
vulnerability
spin_lock
In the Linux kernel, the following vulnerability has been resolved:
mptcp: fix sk_forward_memory corruption on retransmission
MPTCP sk_forward_memory handling is a bit special, as such field
is protected by the msk socket spin_lock, instead of the plain
socket lock.
Currently we have a code path updating such field without handling
the relevant lock:
__mptcp_retrans() -> __mptcp_clean_una_wakeup()
Several helpers in __mptcp_clean_una_wakeup() will update
sk_forward_alloc, possibly causing such field corruption, as reported
by Matthieu.
Address the issue providing and using a new variant of blamed function
which explicitly acquires the msk spin lock.
Related
ubuntucve
ubuntucve
CVE-2021-47132
2024-03-15 00:00:00
vulnrichment
vulnrichment
CVE-2021-47132 mptcp: fix sk_forward_memory corruption on retransmission
2024-03-15 20:14:35
redhatcve
redhatcve
CVE-2021-47132
2024-03-16 18:23:09
cvelist
cvelist
CVE-2021-47132 mptcp: fix sk_forward_memory corruption on retransmission
2024-03-15 20:14:35
cve
cve
CVE-2021-47132
2024-03-15 21:15:07
debiancve
debiancve
CVE-2021-47132
2024-03-15 21:15:07
nessus
nessus
RHEL 6 : kernel (Unpatched Vulnerability)
2024-05-11 00:00:00
RHEL 7 : kernel (Unpatched Vulnerability)
2024-05-11 00:00:00