Use After Free Affecting kernel-zfcpdump-devel package, versions *
Threat Intelligence
EPSS
0.04% (12th
percentile)
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk ID SNYK-RHEL8-KERNELZFCPDUMPDEVEL-6335848
- published 29 Feb 2024
- disclosed 27 Feb 2024
Introduced: 27 Feb 2024
CVE-2021-46963 Open this link in a new tabHow to fix?
There is no fixed version for RHEL:8
kernel-zfcpdump-devel
.
NVD Description
Note: Versions mentioned in the description apply only to the upstream kernel-zfcpdump-devel
package and not the kernel-zfcpdump-devel
package as distributed by RHEL
.
See How to fix?
for RHEL:8
relevant fixed versions and status.
In the Linux kernel, the following vulnerability has been resolved:
scsi: qla2xxx: Fix crash in qla2xxx_mqueuecommand()
RIP: 0010:kmem_cache_free+0xfa/0x1b0
Call Trace:
qla2xxx_mqueuecommand+0x2b5/0x2c0 [qla2xxx]
scsi_queue_rq+0x5e2/0xa40
__blk_mq_try_issue_directly+0x128/0x1d0
blk_mq_request_issue_directly+0x4e/0xb0
Fix incorrect call to free srb in qla2xxx_mqueuecommand(), as srb is now allocated by upper layers. This fixes smatch warning of srb unintended free.
References
- https://access.redhat.com/security/cve/CVE-2021-46963
- https://git.kernel.org/stable/c/6641df81ab799f28a5d564f860233dd26cca0d93
- https://git.kernel.org/stable/c/702cdaa2c6283c135ef16d52e0e4e3c1005aa538
- https://git.kernel.org/stable/c/77509a238547863040a42d57c72403f7d4c89a8f
- https://git.kernel.org/stable/c/80ef24175df2cba3860d0369d1c662b49ee2de56
- https://git.kernel.org/stable/c/a73208e3244127ef9f2cdf24e4adb947aaa32053
- https://git.kernel.org/stable/c/c5ab9b67d8b061de74e2ca51bf787ee599bd7f89
CVSS Scores
version 3.1