CVE-2021-47017

HIGH

Linux Kernel 5.8-5.12 - Use-After-Free in ath10k_htc_send_bundle

Title source: llm
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: ath10k: Fix a use after free in ath10k_htc_send_bundle In ath10k_htc_send_bundle, the bundle_skb could be freed by dev_kfree_skb_any(bundle_skb). But the bundle_skb is used later by bundle_skb->len. As skb_len = bundle_skb->len, my patch replaces bundle_skb->len to skb_len after the bundle_skb was freed.

Scores

CVSS v3 7.8
EPSS 0.0024
EPSS Percentile 14.8%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-416
Status published
Products (11)
Linux/Linux < 5.8
Linux/Linux 5.10.37 - 5.10.*
Linux/Linux 5.11.21 - 5.11.*
Linux/Linux 5.12.4 - 5.12.*
Linux/Linux 5.13
Linux/Linux 5.8
Linux/Linux c8334512f3dd1b94844baca629f9bedca4271593 - 3b1ac40c6012140828caa79e592a438a18ebf71b
Linux/Linux c8334512f3dd1b94844baca629f9bedca4271593 - 5e413c0831ff4700d1739db3fa3ae9f859744676
Linux/Linux c8334512f3dd1b94844baca629f9bedca4271593 - 8392df5d7e0b6a7d21440da1fc259f9938f4dec3
Linux/Linux c8334512f3dd1b94844baca629f9bedca4271593 - 8bb054fb336f4250002fff4e0b075221c05c3c65
... and 1 more
Published Feb 28, 2024
Tracked Since Feb 18, 2026