Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2021-47082
HistoryMar 04, 2024 - 6:15 p.m.

Double free

2024-03-0418:15:00
PRIOn knowledge base
www.prio-n.com
3
linux kernel
vulnerability
double free
tun_free_netdev
tun_net_init
register_netdevice
selinux_tun_dev_free_security
drivers/net/tun
security/selinux/hooks
net/core/dev

7.4 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

15.7%

JSON

In the Linux kernel, the following vulnerability has been resolved:

tun: avoid double free in tun_free_netdev

Avoid double free in tun_free_netdev() by moving the
dev->tstats and tun->security allocs to a new ndo_init routine
(tun_net_init()) that will be called by register_netdevice().
ndo_init is paired with the desctructor (tun_free_netdev()),
so if there’s an error in register_netdevice() the destructor
will handle the frees.

BUG: KASAN: double-free or invalid-free in selinux_tun_dev_free_security+0x1a/0x20 security/selinux/hooks.c:5605

CPU: 0 PID: 25750 Comm: syz-executor416 Not tainted 5.16.0-rc2-syzk #1
Hardware name: Red Hat KVM, BIOS
Call Trace:
<TASK>
__dump_stack lib/dump_stack.c:88 [inline]
dump_stack_lvl+0x89/0xb5 lib/dump_stack.c:106
print_address_description.constprop.9+0x28/0x160 mm/kasan/report.c:247
kasan_report_invalid_free+0x55/0x80 mm/kasan/report.c:372
____kasan_slab_free mm/kasan/common.c:346 [inline]
__kasan_slab_free+0x107/0x120 mm/kasan/common.c:374
kasan_slab_free include/linux/kasan.h:235 [inline]
slab_free_hook mm/slub.c:1723 [inline]
slab_free_freelist_hook mm/slub.c:1749 [inline]
slab_free mm/slub.c:3513 [inline]
kfree+0xac/0x2d0 mm/slub.c:4561
selinux_tun_dev_free_security+0x1a/0x20 security/selinux/hooks.c:5605
security_tun_dev_free_security+0x4f/0x90 security/security.c:2342
tun_free_netdev+0xe6/0x150 drivers/net/tun.c:2215
netdev_run_todo+0x4df/0x840 net/core/dev.c:10627
rtnl_unlock+0x13/0x20 net/core/rtnetlink.c:112
__tun_chr_ioctl+0x80c/0x2870 drivers/net/tun.c:3302
tun_chr_ioctl+0x2f/0x40 drivers/net/tun.c:3311
vfs_ioctl fs/ioctl.c:51 [inline]
__do_sys_ioctl fs/ioctl.c:874 [inline]
__se_sys_ioctl fs/ioctl.c:860 [inline]
__x64_sys_ioctl+0x19d/0x220 fs/ioctl.c:860
do_syscall_x64 arch/x86/entry/common.c:50 [inline]
do_syscall_64+0x3a/0x80 arch/x86/entry/common.c:80
entry_SYSCALL_64_after_hwframe+0x44/0xae

Related

cvelist 1
vulnrichment 1
nvd 1
debiancve 1
cve 1
redhatcve 1
ubuntucve 1
openvas 15
nessus 14
cvelist
cvelist
CVE-2021-47082 tun: avoid double free in tun_free_netdev
2024-03-04 18:06:17
vulnrichment
vulnrichment
CVE-2021-47082 tun: avoid double free in tun_free_netdev
2024-03-04 18:06:17
nvd
nvd
CVE-2021-47082
2024-03-04 18:15:07
debiancve
debiancve
CVE-2021-47082
2024-03-04 18:15:07
cve
cve
CVE-2021-47082
2024-03-04 18:15:07
redhatcve
redhatcve
CVE-2021-47082
2024-03-05 17:08:23
ubuntucve
ubuntucve
CVE-2021-47082
2024-03-04 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-1570)
2024-05-10 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-1735)
2024-05-30 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-1734)
2024-05-30 00:00:00
nessus
nessus
EulerOS 2.0 SP10 : kernel (EulerOS-SA-2024-1570)
2024-05-09 00:00:00
EulerOS 2.0 SP11 : kernel (EulerOS-SA-2024-1788)
2024-06-03 00:00:00
EulerOS Virtualization 2.11.0 : kernel (EulerOS-SA-2024-1735)
2024-05-29 00:00:00

7.4 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

15.7%

JSON
Related for PRION:CVE-2021-47082
cvelist1vulnrichment1nvd1debiancve1cve1redhatcve1ubuntucve1openvas15nessus14