UBUNTU-CVE-2021-47668
Vulnerability Summary
Timeline
Description
In the Linux kernel, the following vulnerability has been resolved: can: dev: can_restart: fix use after free bug After calling netif_rx_ni(skb), dereferencing skb is unsafe. Especially, the can_frame cf which aliases skb memory is accessed after the netif_rx_ni() in: stats->rx_bytes += cf->len; Reordering the lines solves the issue.
CVSS Metrics
- v3.1•HIGH•Score: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Systems
- ubuntu•linux
all | < 4.4.0-204.236 | < 4.15.0-141.145 | < 5.4.0-67.75
- ubuntu•linux-allwinner-5.19
all
- ubuntu•linux-aws
< 4.4.0-1087.91 | < 4.4.0-1123.137 | < 4.15.0-1098.105 | < 5.4.0-1039.41
- ubuntu•linux-aws-5.0
all
- ubuntu•linux-aws-5.11
all
- ubuntu•linux-aws-5.13
all
- ubuntu•linux-aws-5.19
all
- ubuntu•linux-aws-5.3
all
- ubuntu•linux-aws-5.4
< 5.4.0-1039.41~18.04.1
- ubuntu•linux-aws-5.8
all
- ubuntu•linux-aws-6.2
all
- ubuntu•linux-aws-6.5
all
- ubuntu•linux-aws-fips
< 4.15.0-2041.43 | all | < 5.4.0-1069.73+fips2
- ubuntu•linux-aws-hwe
< 4.15.0-1098.105~16.04.1
- ubuntu•linux-azure
< 4.15.0-1112.124~14.04.1 | < 4.15.0-1112.124~16.04.1 | all | < 5.4.0-1041.43
- ubuntu•linux-azure-4.15
< 4.15.0-1112.125
- ubuntu•linux-azure-5.11
all
- ubuntu•linux-azure-5.13
all
- ubuntu•linux-azure-5.19
all
- ubuntu•linux-azure-5.3
all
- ubuntu•linux-azure-5.4
< 5.4.0-1041.43~18.04.1
- ubuntu•linux-azure-5.8
all
- ubuntu•linux-azure-6.2
all
- ubuntu•linux-azure-6.5
all
- ubuntu•linux-azure-edge
all
- ubuntu•linux-azure-fde
all
- ubuntu•linux-azure-fde-5.19
all
- ubuntu•linux-azure-fde-6.2
all
- ubuntu•linux-azure-fips
< 4.15.0-2024.27 | all | < 5.4.0-1073.76+fips1
- ubuntu•linux-bluefield
all
- ubuntu•linux-fips
< 4.4.0-1057.63 | all | < 4.15.0-1057.65
- ubuntu•linux-gcp
< 4.15.0-1097.110~16.04.1 | all | < 5.4.0-1038.41
- ubuntu•linux-gcp-4.15
< 4.15.0-1097.110
- ubuntu•linux-gcp-5.11
all
- ubuntu•linux-gcp-5.13
all
- ubuntu•linux-gcp-5.19
all
- ubuntu•linux-gcp-5.3
all
- ubuntu•linux-gcp-5.4
< 5.4.0-1038.41~18.04.1
- ubuntu•linux-gcp-5.8
all
- ubuntu•linux-gcp-6.2
all
- ubuntu•linux-gcp-6.5
all
- ubuntu•linux-gcp-fips
all | < 5.4.0-1067.71~20.04.1
- ubuntu•linux-gke
all
- ubuntu•linux-gke-4.15
all
- ubuntu•linux-gke-5.15
all
- ubuntu•linux-gke-5.4
all
- ubuntu•linux-gkeop
all
- ubuntu•linux-gkeop-5.15
all
- ubuntu•linux-gkeop-5.4
all
- ubuntu•linux-hwe
< 4.15.0-142.146~16.04.1 | all
Showing first 50 affected entries in server-rendered view.
References (10)
- https://ubuntu.com/security/CVE-2021-47668
- https://www.cve.org/CVERecord?id=CVE-2021-47668
- https://git.kernel.org/linus/03f16c5075b22c8902d2af739969e878b0879c94
- https://git.kernel.org/stable/c/03f16c5075b22c8902d2af739969e878b0879c94
- https://git.kernel.org/stable/c/08ab951787098ae0b6c0364aeea7a8138226f234
- https://git.kernel.org/stable/c/260925a0b7d2da5449f8ecfd02c1405e0c8a45b8
- https://git.kernel.org/stable/c/593c072b7b3c4d7044416eb039d9ad706bedd67a
- https://git.kernel.org/stable/c/92668d28c7e6a7a2ba07df287669ffcdf650c421
- https://git.kernel.org/stable/c/ac48ef15826e83f4206c47add61072e8fc76d328
- https://git.kernel.org/stable/c/bbc6847b9b8978b520f62fbc7c68c54ef0f8d282