CVE-2021-47204

HIGH

Linux Kernel 4.17-5.4.162, 5.10.82-5.10.*, 5.4.162-5.4.* - Use-After-Free in dpaa2-eth Remove Function

Title source: llm
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: net: dpaa2-eth: fix use-after-free in dpaa2_eth_remove Access to netdev after free_netdev() will cause use-after-free bug. Move debug log before free_netdev() call to avoid it.

Scores

CVSS v3 7.8
EPSS 0.0023
EPSS Percentile 13.5%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-416
Status published
Products (12)
Linux/Linux < 4.17
Linux/Linux 4.17
Linux/Linux 5.10.82 - 5.10.*
Linux/Linux 5.15.5 - 5.15.*
Linux/Linux 5.16
Linux/Linux 5.4.162 - 5.4.*
Linux/Linux 7472dd9f649958be6a8880ed439233c8414a7b34 - 1c4099dc0d6a01e76e4f7dd98e4b3e0d55d80ad9
Linux/Linux 7472dd9f649958be6a8880ed439233c8414a7b34 - 32d4686224744819ddcae58b666c21d2a4ef4c88
Linux/Linux 7472dd9f649958be6a8880ed439233c8414a7b34 - 9b5a333272a48c2f8b30add7a874e46e8b26129c
Linux/Linux 7472dd9f649958be6a8880ed439233c8414a7b34 - d74ff10ed2d93dc9b67e99a74b36fb9a83273d8a
... and 2 more
Published Apr 10, 2024
Tracked Since Feb 18, 2026