PT-2024-11311 · Linux+6 · Linux Kernel+6

Pavel Skripkin

Published

2021-07-09

Updated

2024-12-26

CVE-2021-47310

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A use-after-free (UAF) bug has been resolved in the Linux kernel. The issue occurs because priv, which is netdev private data, cannot be used after the free netdev() call. Using priv after free netdev() can cause a UAF bug. The fix involves moving the free netdev() call to the end of the function.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALSA-2024:4211

ALSA-2024:4352

BDU:2025-07343

CESA-2024_4211

CESA-2024_4352

CVE-2021-47310

INFSA-2024_4211

INFSA-2024_4352

OESA-2024-1736

RHSA-2024:4211

RHSA-2024:4352

RHSA-2024:4447

RHSA-2024:4740

RHSA-2024_4211

RHSA-2024_4352

RLSA-2024:4211

RLSA-2024:4352

RXSA-2024:4211

SUSE-SU-2024:1979-1

SUSE-SU-2024:1983-1

SUSE-SU-2024:2184-1

Affected Products

Almalinux

Astra Linux

Centos

Linux Kernel

Red Hat

Rocky Linux

Suse

PT-2024-11311 · Linux+6 · Linux Kernel+6

CVE-2021-47310

Weakness Enumeration

Related Identifiers

Affected Products

References · 710