PT-2021-8122 · Linux+6 · Linux Kernel+6

Jie Wang

Published

2021-12-12

Updated

2024-12-19

CVE-2021-47596

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to a use-after-free bug in the hclgevf send mbx msg function of the Hisilicon HNS3 network driver in the Linux kernel. This bug occurs because the hns3 remove function uninstalls the client instance first and then the acceleration engine device, but the acceleration engine device uninstall process still uses the freed netdevice to trace runtime information. The exploitation of this issue may allow an attacker to elevate their privileges.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALSA-2024:4583

BDU:2024-08347

CVE-2021-47596

INFSA-2024_4583

OPENSUSE-SU-2024_2362-1

OPENSUSE-SU-2024_2372-1

OPENSUSE-SU-2024_2394-1

RHSA-2024:4533

RHSA-2024:4554

RHSA-2024:4583

RHSA-2024_4583

RLSA-2024:4583

SUSE-SU-2024:2362-1

SUSE-SU-2024:2372-1

SUSE-SU-2024:2384-1

SUSE-SU-2024:2394-1

SUSE-SU-2024:2902-1

SUSE-SU-2024:2929-1

SUSE-SU-2024:2939-1

Affected Products

Almalinux

Astra Linux

Linux Kernel

Red Hat

Red Os

Rocky Linux

Suse

PT-2021-8122 · Linux+6 · Linux Kernel+6

CVE-2021-47596

Weakness Enumeration

Related Identifiers

Affected Products

References · 1296