Lucene search
Redhat.comRH:CVE-2021-47355HistoryMay 22, 2024 - 11:26 a.m.
CVE-2021-47355
2024-05-2211:26:51
redhat.com
access.redhat.com
6
linux
kernel
atm
nicstar
vulnerability
use-after-free
fix
del_timer_sync
driver
remove
function
In the Linux kernel, the following vulnerability has been resolved: atm: nicstar: Fix possible use-after-free in nicstar_cleanup() This module’s remove path calls del_timer(). However, that function does not wait until the timer handler finishes. This means that the timer handler may still be running after the driver’s remove function has finished, which would result in a use-after-free. Fix by calling del_timer_sync(), which makes sure the timer handler has finished, and unable to re-schedule itself.
Related
debiancve
debiancve
CVE-2021-47355
2024-05-21 15:15:21
cve
cve
CVE-2021-47355
2024-05-21 15:15:21
ubuntucve
ubuntucve
CVE-2021-47355
2024-05-21 00:00:00
vulnrichment
vulnrichment
nvd
nvd
CVE-2021-47355
2024-05-21 15:15:21
osv
osv
CVE-2021-47355
2024-05-21 15:15:00
Security update for the Linux Kernel
2024-06-24 18:34:20
Security update for the Linux Kernel
2024-06-11 07:41:39
cvelist
cvelist
nessus
nessus
SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2024:2184-1)
2024-06-25 00:00:00
SUSE SLES12 Security Update : kernel (SUSE-SU-2024:1983-1)
2024-06-12 00:00:00
SUSE SLES12 Security Update : kernel (SUSE-SU-2024:1979-1)
2024-06-12 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2024:1979-1)
2024-06-12 00:00:00