Lucene search
416baaa9-dc9f-4396-8d5f-8c081fb06d67NVD:CVE-2021-47281HistoryMay 21, 2024 - 3:15 p.m.
CVE-2021-47281
2024-05-2115:15:16
416baaa9-dc9f-4396-8d5f-8c081fb06d67
web.nvd.nist.gov
5
linux kernel
alsa
vulnerability
race
fix
uaf
syzkaller
In the Linux kernel, the following vulnerability has been resolved:
ALSA: seq: Fix race of snd_seq_timer_open()
The timer instance per queue is exclusive, and snd_seq_timer_open()
should have managed the concurrent accesses. It looks as if it’s
checking the already existing timer instance at the beginning, but
it’s not right, because there is no protection, hence any later
concurrent call of snd_seq_timer_open() may override the timer
instance easily. This may result in UAF, as the leftover timer
instance can keep running while the queue itself gets closed, as
spotted by syzkaller recently.
For avoiding the race, add a proper check at the assignment of
tmr->timeri again, and return -EBUSY if it’s been already registered.
Related
vulnrichment
vulnrichment
CVE-2021-47281 ALSA: seq: Fix race of snd_seq_timer_open()
2024-05-21 14:20:07
osv
osv
CVE-2021-47281
2024-05-21 15:15:00
Security update for the Linux Kernel
2024-06-12 16:39:35
Security update for the Linux Kernel
2024-06-11 07:41:39
redhatcve
redhatcve
CVE-2021-47281
2024-05-23 13:30:41
cvelist
cvelist
CVE-2021-47281 ALSA: seq: Fix race of snd_seq_timer_open()
2024-05-21 14:20:07
cve
cve
CVE-2021-47281
2024-05-21 15:15:16
ubuntucve
ubuntucve
CVE-2021-47281
2024-05-21 00:00:00
debiancve
debiancve
CVE-2021-47281
2024-05-21 15:15:16
nessus
nessus
SUSE SLES12 Security Update : kernel (SUSE-SU-2024:1983-1)
2024-06-12 00:00:00
SUSE SLES12 Security Update : kernel (SUSE-SU-2024:1979-1)
2024-06-12 00:00:00
SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2024:2184-1)
2024-06-25 00:00:00
openvas
openvas
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2024:2185-1)
2024-06-29 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:1979-1)
2024-06-12 00:00:00