CVE-2021-46994

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A null dereference error occurs in the Linux kernel when resuming after suspend, even when the interface was not previously enabled. This is caused by the driver queuing work via priv->restart work before the interface is brought up. The issue is resolved by moving the workqueue initialization to mcp251x can probe().

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.