Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2021-47358

UNKNOWN
Published 2024-05-21T14:44:50.221Z
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2021-47358. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

In the Linux kernel, the following vulnerability has been resolved:

staging: greybus: uart: fix tty use after free

User space can hold a tty open indefinitely and tty drivers must not
release the underlying structures until the last user is gone.

Switch to using the tty-port reference counter to manage the life time
of the greybus tty state to avoid use after free after a disconnect.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Linux

Linux

Affected Versions:

a18e15175708d39abbe9746ddc3479466b7800c3 a18e15175708d39abbe9746ddc3479466b7800c3 a18e15175708d39abbe9746ddc3479466b7800c3 a18e15175708d39abbe9746ddc3479466b7800c3 a18e15175708d39abbe9746ddc3479466b7800c3 a18e15175708d39abbe9746ddc3479466b7800c3 a18e15175708d39abbe9746ddc3479466b7800c3
Linux

Linux

Affected Versions:

4.9 0 4.9.285 4.14.249 4.19.209 5.4.150 5.10.70 5.14.9 5.15

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed HIGH

GHSA-xp4x-rp64-962g

Advisory Details

In the Linux kernel, the following vulnerability has been resolved: staging: greybus: uart: fix tty use after free User space can hold a tty open indefinitely and tty drivers must not release the underlying structures until the last user is gone. Switch to using the tty-port reference counter to manage the life time of the greybus tty state to avoid use after free after a disconnect.

CVSS Scoring

CVSS Score

7.5

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2021-47358
WEB https://git.kernel.org/stable/c/4dc56951a8d9d61d364d346c61a5f1d70b4f5e14
WEB https://git.kernel.org/stable/c/64062fcaca8872f063ec9da011e7bf30470be33f
WEB https://git.kernel.org/stable/c/92b67aaafb7c449db9f0c3dcabc0ff967cb3a42d
WEB https://git.kernel.org/stable/c/92dc0b1f46e12cfabd28d709bb34f7a39431b44f
WEB https://git.kernel.org/stable/c/9872ff6fdce8b229f01993b611b5d1719cb70ff1
WEB https://git.kernel.org/stable/c/a5cfd51f6348e8fd7531461366946039c29c7e69
WEB https://git.kernel.org/stable/c/b9e697e60ce9890e9258a73eb061288e7d68e5e6

Advisory provided by GitHub Security Advisory Database. Published: May 21, 2024, Modified: December 26, 2024

References

https://git.kernel.org/stable/c/92b67aaafb7c449db9f0c3dcabc0ff967cb3a42d
https://git.kernel.org/stable/c/64062fcaca8872f063ec9da011e7bf30470be33f
https://git.kernel.org/stable/c/a5cfd51f6348e8fd7531461366946039c29c7e69
https://git.kernel.org/stable/c/4dc56951a8d9d61d364d346c61a5f1d70b4f5e14
https://git.kernel.org/stable/c/b9e697e60ce9890e9258a73eb061288e7d68e5e6
https://git.kernel.org/stable/c/9872ff6fdce8b229f01993b611b5d1719cb70ff1
https://git.kernel.org/stable/c/92dc0b1f46e12cfabd28d709bb34f7a39431b44f
Published: 2024-05-21T14:44:50.221Z
Last Modified: 2025-05-04T07:09:18.414Z
Copied to clipboard!