CVE-2021-47017
HIGHLinux Kernel 5.8-5.12 - Use-After-Free in ath10k_htc_send_bundle
Title source: llmDescription
In the Linux kernel, the following vulnerability has been resolved: ath10k: Fix a use after free in ath10k_htc_send_bundle In ath10k_htc_send_bundle, the bundle_skb could be freed by dev_kfree_skb_any(bundle_skb). But the bundle_skb is used later by bundle_skb->len. As skb_len = bundle_skb->len, my patch replaces bundle_skb->len to skb_len after the bundle_skb was freed.
References (4)
Core 4
Core References
Scores
CVSS v3
7.8
EPSS
0.0024
EPSS Percentile
14.8%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-416
Status
published
Products (11)
Linux/Linux
< 5.8
Linux/Linux
5.10.37 - 5.10.*
Linux/Linux
5.11.21 - 5.11.*
Linux/Linux
5.12.4 - 5.12.*
Linux/Linux
5.13
Linux/Linux
5.8
Linux/Linux
c8334512f3dd1b94844baca629f9bedca4271593 - 3b1ac40c6012140828caa79e592a438a18ebf71b
Linux/Linux
c8334512f3dd1b94844baca629f9bedca4271593 - 5e413c0831ff4700d1739db3fa3ae9f859744676
Linux/Linux
c8334512f3dd1b94844baca629f9bedca4271593 - 8392df5d7e0b6a7d21440da1fc259f9938f4dec3
Linux/Linux
c8334512f3dd1b94844baca629f9bedca4271593 - 8bb054fb336f4250002fff4e0b075221c05c3c65
... and 1 more
Published
Feb 28, 2024
Tracked Since
Feb 18, 2026