Lucene search
Redhat.comRH:CVE-2021-47388HistoryMay 22, 2024 - 10:20 a.m.
CVE-2021-47388
2024-05-2210:20:26
redhat.com
access.redhat.com
3
linux kernel
mac80211
use-after-free
vulnerability
resolution
In the Linux kernel, the following vulnerability has been resolved: mac80211: fix use-after-free in CCMP/GCMP RX When PN checking is done in mac80211, for fragmentation we need to copy the PN to the RX struct so we can later use it to do a comparison, since commit bf30ca922a0c (“mac80211: check defrag PN against current frame”). Unfortunately, in that commit I used the ‘hdr’ variable without it being necessarily valid, so use-after-free could occur if it was necessary to reallocate (parts of) the frame. Fix this by reloading the variable after the code that results in the reallocations, if any. This fixes https://bugzilla.kernel.org/show_bug.cgi?id=214401.
Related
nvd
nvd
CVE-2021-47388
2024-05-21 15:15:24
cvelist
cvelist
CVE-2021-47388 mac80211: fix use-after-free in CCMP/GCMP RX
2024-05-21 15:03:47
ubuntucve
ubuntucve
CVE-2021-47388
2024-05-21 00:00:00
debiancve
debiancve
CVE-2021-47388
2024-05-21 15:15:24
cve
cve
CVE-2021-47388
2024-05-21 15:15:24
nessus
nessus
SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:2019-1)
2024-06-14 00:00:00
SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:2008-1)
2024-06-13 00:00:00