Lucene search

K
ubuntucveUbuntu.comUB:CVE-2021-47480
HistoryMay 22, 2024 - 12:00 a.m.

CVE-2021-47480

2024-05-2200:00:00
ubuntu.com
ubuntu.com
1
linux kernel
scsi vulnerability
module refcnt
kernel panic
page fault

6.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

13.0%

In the Linux kernel, the following vulnerability has been resolved: scsi:
core: Put LLD module refcnt after SCSI device is released SCSI host release
is triggered when SCSI device is freed. We have to make sure that the
low-level device driver module won’t be unloaded before SCSI host instance
is released because shost->hostt is required in the release handler. Make
sure to put LLD module refcnt after SCSI device is released. Fixes a kernel
panic of ‘BUG: unable to handle page fault for address’ reported by
Changhui and Yi.

6.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

13.0%