Lucene search
LinuxVULNRICHMENT:CVE-2021-47198HistoryApr 10, 2024 - 6:56 p.m.
CVE-2021-47198 scsi: lpfc: Fix use-after-free in lpfc_unreg_rpi() routine
2024-04-1018:56:33
Linux
github.com
1
linux kernel
vulnerability
scsi
lpfc
use-after-free
nlp_reg_login_send
lpfc_unreg_rpi
lpfc_mbx_cmpl_fc_reg_login
In the Linux kernel, the following vulnerability has been resolved:
scsi: lpfc: Fix use-after-free in lpfc_unreg_rpi() routine
An error is detected with the following report when unloading the driver:
“KASAN: use-after-free in lpfc_unreg_rpi+0x1b1b”
The NLP_REG_LOGIN_SEND nlp_flag is set in lpfc_reg_fab_ctrl_node(), but the
flag is not cleared upon completion of the login.
This allows a second call to lpfc_unreg_rpi() to proceed with nlp_rpi set
to LPFC_RPI_ALLOW_ERROR. This results in a use after free access when used
as an rpi_ids array index.
Fix by clearing the NLP_REG_LOGIN_SEND nlp_flag in
lpfc_mbx_cmpl_fc_reg_login().
Related
cvelist
cvelist
CVE-2021-47198 scsi: lpfc: Fix use-after-free in lpfc_unreg_rpi() routine
2024-04-10 18:56:33
redhatcve
redhatcve
CVE-2021-47198
2024-04-11 22:01:47
nvd
nvd
CVE-2021-47198
2024-04-10 19:15:47
debiancve
debiancve
CVE-2021-47198
2024-04-10 19:15:47
ubuntucve
ubuntucve
CVE-2021-47198
2024-04-10 00:00:00
cve
cve
CVE-2021-47198
2024-04-10 19:15:47
redos
redos
ROS-20240820-09
2024-08-20 00:00:00
nessus
nessus
SUSE SLES15 Security Update : kernel (SUSE-SU-2024:1650-1)
2024-05-16 00:00:00
SUSE SLES15 Security Update : kernel (SUSE-SU-2024:1642-1)
2024-05-15 00:00:00
SUSE SLES15 Security Update : kernel (SUSE-SU-2024:1641-1)
2024-05-15 00:00:00
openvas
openvas
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2024:1642-1)
2024-05-24 00:00:00
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2024:1647-1)
2024-05-24 00:00:00
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2024:1641-1)
2024-05-24 00:00:00
AI Score
6.8
Confidence
Low
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2021-47198