PT-2021-8211 · Linux+3 · Linux Kernel+3

Syzbot

·

Published

2021-12-10

·

Updated

2025-04-01

·

CVE-2021-47598

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.16.0-rc4-syzkaller
Description The vulnerability is related to the sch cake component in the Linux kernel. It is caused by the function cake destroy() being called from cake init(), which is not supposed to happen because the core stack already handles the destruction of qdiscs. This can lead to a use-after-free condition, allowing an attacker to potentially elevate their privileges or cause a denial of service. The issue was identified by syzbot, which triggered the use-after-free condition.
Recommendations To resolve this issue, update the Linux kernel to a version that includes the fix for the sch cake vulnerability. Specifically, versions prior to 5.16.0-rc4-syzkaller are affected. As a temporary workaround, consider disabling the cake destroy() function until a patch is available. However, this may have unintended consequences and should be approached with caution. The best course of action is to apply the official patch or update to a newer, unaffected version of the Linux kernel.

Exploit

Fix

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

BDU:2024-11472
CVE-2021-47598
OESA-2024-1862
OPENSUSE-SU-2024_2947-1
OPENSUSE-SU-2024_2948-1
OPENSUSE-SU-2024_3774-1
OPENSUSE-SU-2024_3777-1
OPENSUSE-SU-2024_3779-1
OPENSUSE-SU-2024_3780-1
OPENSUSE-SU-2024_3783-1
OPENSUSE-SU-2024_3793-1
OPENSUSE-SU-2024_3797-1
OPENSUSE-SU-2024_3798-1
OPENSUSE-SU-2024_3799-1
OPENSUSE-SU-2024_3804-1
OPENSUSE-SU-2024_3805-1
OPENSUSE-SU-2024_3806-1
OPENSUSE-SU-2024_3814-1
OPENSUSE-SU-2024_3815-1
OPENSUSE-SU-2024_3824-1
OPENSUSE-SU-2024_3829-1
OPENSUSE-SU-2024_3830-1
OPENSUSE-SU-2024_3831-1
OPENSUSE-SU-2024_3833-1
OPENSUSE-SU-2024_3836-1
OPENSUSE-SU-2024_3837-1
OPENSUSE-SU-2024_3838-1
OPENSUSE-SU-2024_3840-1
OPENSUSE-SU-2024_3842-1
OPENSUSE-SU-2024_3850-1
OPENSUSE-SU-2024_3851-1
OPENSUSE-SU-2024_3852-1
OPENSUSE-SU-2024_3854-1
OPENSUSE-SU-2024_3855-1
OPENSUSE-SU-2024_3856-1
OPENSUSE-SU-2024_3857-1
OPENSUSE-SU-2024_3859-1
OPENSUSE-SU-2024_3860-1
OPENSUSE-SU-2024_4122-1
OPENSUSE-SU-2024_4123-1
OPENSUSE-SU-2024_4124-1
OPENSUSE-SU-2024_4125-1
OPENSUSE-SU-2024_4127-1
OPENSUSE-SU-2024_4128-1
OPENSUSE-SU-2024_4161-1
OPENSUSE-SU-2024_4180-1
OPENSUSE-SU-2024_4207-1
OPENSUSE-SU-2024_4214-1
OPENSUSE-SU-2024_4216-1
OPENSUSE-SU-2024_4218-1
OPENSUSE-SU-2024_4228-1
OPENSUSE-SU-2024_4234-1
OPENSUSE-SU-2024_4235-1
OPENSUSE-SU-2024_4236-1
OPENSUSE-SU-2024_4243-1
OPENSUSE-SU-2024_4246-1
OPENSUSE-SU-2024_4256-1
OPENSUSE-SU-2024_4262-1
OPENSUSE-SU-2024_4264-1
OPENSUSE-SU-2024_4266-1
OPENSUSE-SU-2024_4275-1
OPENSUSE-SU-2025_0101-1
OPENSUSE-SU-2025_0105-1
OPENSUSE-SU-2025_0106-1
OPENSUSE-SU-2025_0107-1
OPENSUSE-SU-2025_0109-1
OPENSUSE-SU-2025_0110-1
OPENSUSE-SU-2025_0111-1
OPENSUSE-SU-2025_0114-1
OPENSUSE-SU-2025_0115-1
OPENSUSE-SU-2025_0124-1
OPENSUSE-SU-2025_0131-1
OPENSUSE-SU-2025_0137-1
OPENSUSE-SU-2025_0138-1
OPENSUSE-SU-2025_0146-1
OPENSUSE-SU-2025_0150-1
OPENSUSE-SU-2025_0158-1
OPENSUSE-SU-2025_0164-1
OPENSUSE-SU-2025_0238-1
OPENSUSE-SU-2025_0239-1
OPENSUSE-SU-2025_0240-1
OPENSUSE-SU-2025_0243-1
OPENSUSE-SU-2025_0244-1
OPENSUSE-SU-2025_0248-1
OPENSUSE-SU-2025_0249-1
OPENSUSE-SU-2025_0251-1
OPENSUSE-SU-2025_0252-1
OPENSUSE-SU-2025_0253-1
OPENSUSE-SU-2025_0254-1
OPENSUSE-SU-2025_0260-1
OPENSUSE-SU-2025_0261-1
OPENSUSE-SU-2025_0264-1
OPENSUSE-SU-2025_0266-1
SUSE-SU-2024:2893-1
SUSE-SU-2024:2894-1
SUSE-SU-2024:2902-1
SUSE-SU-2024:2923-1
SUSE-SU-2024:2929-1
SUSE-SU-2024:2939-1
SUSE-SU-2024:2947-1
SUSE-SU-2024:2948-1
SUSE-SU-2024:3767-1
SUSE-SU-2024:3768-1
SUSE-SU-2024:3774-1
SUSE-SU-2024:3777-1
SUSE-SU-2024:3779-1
SUSE-SU-2024:3780-1
SUSE-SU-2024:3782-1
SUSE-SU-2024:3783-1
SUSE-SU-2024:3793-1
SUSE-SU-2024:3794-1
SUSE-SU-2024:3796-1
SUSE-SU-2024:3797-1
SUSE-SU-2024:3798-1
SUSE-SU-2024:3799-1
SUSE-SU-2024:3800-1
SUSE-SU-2024:3803-1
SUSE-SU-2024:3804-1
SUSE-SU-2024:3805-1
SUSE-SU-2024:3806-1
SUSE-SU-2024:3814-1
SUSE-SU-2024:3815-1
SUSE-SU-2024:3824-1
SUSE-SU-2024:3829-1
SUSE-SU-2024:3830-1
SUSE-SU-2024:3831-1
SUSE-SU-2024:3833-1
SUSE-SU-2024:3836-1
SUSE-SU-2024:3837-1
SUSE-SU-2024:3838-1
SUSE-SU-2024:3840-1
SUSE-SU-2024:3842-1
SUSE-SU-2024:3848-1
SUSE-SU-2024:3849-1
SUSE-SU-2024:3850-1
SUSE-SU-2024:3851-1
SUSE-SU-2024:3852-1
SUSE-SU-2024:3854-1
SUSE-SU-2024:3855-1
SUSE-SU-2024:3856-1
SUSE-SU-2024:3857-1
SUSE-SU-2024:3859-1
SUSE-SU-2024:3860-1
SUSE-SU-2024:4122-1
SUSE-SU-2024:4123-1
SUSE-SU-2024:4124-1
SUSE-SU-2024:4125-1
SUSE-SU-2024:4127-1
SUSE-SU-2024:4128-1
SUSE-SU-2024:4161-1
SUSE-SU-2024:4180-1
SUSE-SU-2024:4207-1
SUSE-SU-2024:4214-1
SUSE-SU-2024:4216-1
SUSE-SU-2024:4218-1
SUSE-SU-2024:4228-1
SUSE-SU-2024:4231-1
SUSE-SU-2024:4234-1
SUSE-SU-2024:4235-1
SUSE-SU-2024:4236-1
SUSE-SU-2024:4242-1
SUSE-SU-2024:4243-1
SUSE-SU-2024:4246-1
SUSE-SU-2024:4248-1
SUSE-SU-2024:4250-1
SUSE-SU-2024:4256-1
SUSE-SU-2024:4262-1
SUSE-SU-2024:4263-1
SUSE-SU-2024:4264-1
SUSE-SU-2024:4266-1
SUSE-SU-2024:4275-1
SUSE-SU-2025:0101-1
SUSE-SU-2025:0105-1
SUSE-SU-2025:0106-1
SUSE-SU-2025:0107-1
SUSE-SU-2025:0109-1
SUSE-SU-2025:0110-1
SUSE-SU-2025:0111-1
SUSE-SU-2025:0114-1
SUSE-SU-2025:0115-1
SUSE-SU-2025:0124-1
SUSE-SU-2025:0131-1
SUSE-SU-2025:0137-1
SUSE-SU-2025:0138-1
SUSE-SU-2025:0146-1
SUSE-SU-2025:0150-1
SUSE-SU-2025:0158-1
SUSE-SU-2025:0164-1
SUSE-SU-2025:0238-1
SUSE-SU-2025:0239-1
SUSE-SU-2025:0240-1
SUSE-SU-2025:0243-1
SUSE-SU-2025:0244-1
SUSE-SU-2025:0248-1
SUSE-SU-2025:0249-1
SUSE-SU-2025:0251-1
SUSE-SU-2025:0252-1
SUSE-SU-2025:0253-1
SUSE-SU-2025:0254-1
SUSE-SU-2025:0260-1
SUSE-SU-2025:0261-1
SUSE-SU-2025:0264-1
SUSE-SU-2025:0266-1

Affected Products

Astra Linux
Linux Kernel
Red Os
Suse