Lucene search

K
redhatcveRedhat.comRH:CVE-2021-47480
HistoryMay 23, 2024 - 11:07 a.m.

CVE-2021-47480

2024-05-2311:07:04
redhat.com
access.redhat.com
4
linux kernel
vulnerability
lld module
scsi device
release handler
kernel panic
page fault

6.4 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

13.0%

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Put LLD module refcnt after SCSI device is released SCSI host release is triggered when SCSI device is freed. We have to make sure that the low-level device driver module won’t be unloaded before SCSI host instance is released because shost->hostt is required in the release handler. Make sure to put LLD module refcnt after SCSI device is released. Fixes a kernel panic of ‘BUG: unable to handle page fault for address’ reported by Changhui and Yi.

6.4 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

13.0%