vulnerability

Ubuntu: (Multiple Advisories) (CVE-2021-47163): Linux kernel vulnerabilities

Try Surface Command
Back to search
Severity
5
CVSS
(AV:L/AC:L/Au:S/C:N/I:N/A:C)
Published
Mar 25, 2024
Added
Nov 19, 2024
Modified
Aug 18, 2025

Description

In the Linux kernel, the following vulnerability has been resolved:

tipc: wait and exit until all work queues are done

On some host, a crash could be triggered simply by repeating these
commands several times:

# modprobe tipc
# tipc bearer enable media udp name UDP1 localip 127.0.0.1
# rmmod tipc

[] BUG: unable to handle kernel paging request at ffffffffc096bb00
[] Workqueue: events 0xffffffffc096bb00
[] Call Trace:
[] ? process_one_work+0x1a7/0x360
[] ? worker_thread+0x30/0x390
[] ? create_worker+0x1a0/0x1a0
[] ? kthread+0x116/0x130
[] ? kthread_flush_work_fn+0x10/0x10
[] ? ret_from_fork+0x35/0x40

When removing the TIPC module, the UDP tunnel sock will be delayed to
release in a work queue as sock_release() can't be done in rtnl_lock().
If the work queue is schedule to run after the TIPC module is removed,
kernel will crash as the work queue function cleanup_beareri() code no
longer exists when trying to invoke it.

To fix it, this patch introduce a member wq_count in tipc_net to track
the numbers of work queues in schedule, and wait and exit until all
work queues are done in tipc_exit_net().

Solutions

ubuntu-upgrade-linux-image-4-15-0-1135-fipsubuntu-upgrade-linux-image-4-15-0-1142-oracleubuntu-upgrade-linux-image-4-15-0-1163-kvmubuntu-upgrade-linux-image-4-15-0-1173-gcpubuntu-upgrade-linux-image-4-15-0-1180-awsubuntu-upgrade-linux-image-4-15-0-1188-azureubuntu-upgrade-linux-image-4-15-0-2081-gcp-fipsubuntu-upgrade-linux-image-4-15-0-2097-azure-fipsubuntu-upgrade-linux-image-4-15-0-2118-aws-fipsubuntu-upgrade-linux-image-4-15-0-237-genericubuntu-upgrade-linux-image-4-15-0-237-lowlatencyubuntu-upgrade-linux-image-4-4-0-1113-fipsubuntu-upgrade-linux-image-4-4-0-1143-awsubuntu-upgrade-linux-image-4-4-0-1144-kvmubuntu-upgrade-linux-image-4-4-0-1181-awsubuntu-upgrade-linux-image-4-4-0-268-genericubuntu-upgrade-linux-image-4-4-0-268-lowlatencyubuntu-upgrade-linux-image-awsubuntu-upgrade-linux-image-aws-fipsubuntu-upgrade-linux-image-aws-hweubuntu-upgrade-linux-image-aws-lts-18-04ubuntu-upgrade-linux-image-azureubuntu-upgrade-linux-image-azure-fipsubuntu-upgrade-linux-image-azure-lts-18-04ubuntu-upgrade-linux-image-fipsubuntu-upgrade-linux-image-gcpubuntu-upgrade-linux-image-gcp-fipsubuntu-upgrade-linux-image-gcp-lts-18-04ubuntu-upgrade-linux-image-genericubuntu-upgrade-linux-image-generic-hwe-16-04ubuntu-upgrade-linux-image-generic-lts-xenialubuntu-upgrade-linux-image-gkeubuntu-upgrade-linux-image-kvmubuntu-upgrade-linux-image-lowlatencyubuntu-upgrade-linux-image-lowlatency-hwe-16-04ubuntu-upgrade-linux-image-lowlatency-lts-xenialubuntu-upgrade-linux-image-oemubuntu-upgrade-linux-image-oracleubuntu-upgrade-linux-image-oracle-lts-18-04ubuntu-upgrade-linux-image-virtualubuntu-upgrade-linux-image-virtual-hwe-16-04ubuntu-upgrade-linux-image-virtual-lts-xenial

References

    Title
    NEW

    Explore Exposure Command

    Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

    Try it today