CVE-2021-47412

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to the block layer in the Linux kernel, where the rq qos ops->done bio function is called even when the bio isn't tracked. This can lead to a potential kernel panic. The rq qos framework is only applied to request-based drivers, and rq qos done bio() doesn't need to be called for bio-based drivers or bios that aren't tracked. In bio endio(), the request queue is referred to via bio->bi bdev->bd disk->queue, which may be gone since the request queue refcount may not be held. Additionally, q->rq qos may be freed in blk cleanup queue() when calling into rq qos done bio(). The fix is to not call rq qos ops->done bio if the bio isn't tracked, which is safe because both ioc rqos done bio() and blkcg iolatency done bio() are no-ops if the bio isn't tracked.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.