CVE-2021-47576

Name of the Vulnerable Software and Affected Versions Linux kernel version 5.15.0-01d0625

Description The vulnerability is related to a use-after-free issue in the resp mode select() function of the scsi debug component. This issue can be exploited to potentially elevate privileges in the system. The vulnerability is identified by a BUG report from KASAN, indicating a use-after-free error in resp mode select+0xa4c/0xb40 at drivers/scsi/scsi debug.c:2509. The error occurs when reading a size of 1 at address ffff888026670f50 by task scsicmd/15032.

Recommendations To resolve this issue, update the Linux kernel to a version that includes the fix for this vulnerability. Specifically, ensure that the scsi debug component has been updated to include the sanity check for the block descriptor length in resp mode select() to avoid use-after-free errors.

Note: The provided information does not specify the exact version that includes the fix, so it is recommended to update to the latest available version of the Linux kernel.

As a temporary workaround, consider disabling the resp mode select() function or restricting access to the scsi debug component until a patched version is available. However, this should be done with caution as it may affect system functionality.

At the moment, there is no information about a newer version that contains a fix for this vulnerability, apart from ensuring the scsi debug component is updated with the necessary sanity checks.