vulnerability

Debian: CVE-2021-47232: linux -- security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:L/Au:N/C:C/I:C/A:C)	05/21/2024	07/30/2024	02/18/2025

Severity

CVSS

(AV:L/AC:L/Au:N/C:C/I:C/A:C)

Published

05/21/2024

Added

07/30/2024

Modified

02/18/2025

Description

In the Linux kernel, the following vulnerability has been resolved:

can: j1939: fix Use-after-Free, hold skb ref while in use

This patch fixes a Use-after-Free found by the syzbot.

The problem is that a skb is taken from the per-session skb queue,
without incrementing the ref count. This leads to a Use-after-Free if
the skb is taken concurrently from the session queue due to a CTS.

Solution

debian-upgrade-linux

References

CVE-2021-47232
https://attackerkb.com/topics/CVE-2021-47232

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today