CVE-2021-47124

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to the io uring feature in the Linux kernel, where the io link timeout fn() function should put only one reference of the linked timeout request. However, in cases of racing with the master request's completion, first io req complete() puts one and then io put req deferred() is called. This can lead to problems with reference counting.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.