发布于3月6日3月6日 Members Red Hat: CVE-2021-47310: kernel: net: ti: fix UAF in tlan_remove_one (Multiple Advisories) Severity 5 CVSS (AV:L/AC:L/Au:S/C:N/I:N/A:C) Published 05/21/2024 Created 07/03/2024 Added 07/03/2024 Modified 12/30/2024 Description In the Linux kernel, the following vulnerability has been resolved: net: ti: fix UAF in tlan_remove_one priv is netdev private data and it cannot be used after free_netdev() call. Using priv after free_netdev() can cause UAF bug. Fix it by moving free_netdev() at the end of the function. Solution(s) redhat-upgrade-kernel redhat-upgrade-kernel-rt References CVE-2021-47310 RHSA-2024:4211 RHSA-2024:4352 RHSA-2024:4740
