CVE-2021-46979

Summary

In the Linux kernel, the following vulnerability has been resolved:

iio: core: fix ioctl handlers removal

Currently ioctl handlers are removed twice. For the first time during iio_device_unregister() then later on inside iio_device_unregister_eventset() and iio_buffers_free_sysfs_and_mask(). Double free leads to kernel panic.

Fix this by not touching ioctl handlers list directly but rather letting code responsible for registration call the matching cleanup routine itself.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux8dedcc3eee3aceb37832176f0a1b03d5687acda3 < 11e1cae5da4096552f7c091476cbadbc0d1817daaffected
LinuxLinux8dedcc3eee3aceb37832176f0a1b03d5687acda3 < ab6c935ba3a04317632f3b8b68675bdbaf395303affected
LinuxLinux8dedcc3eee3aceb37832176f0a1b03d5687acda3 < 901f84de0e16bde10a72d7eb2f2eb73fcde8fa1aaffected
LinuxLinux5.11affected
LinuxLinux0 < 5.11unaffected
LinuxLinux5.11.22 <= 5.11.*unaffected
LinuxLinux5.12.5 <= 5.12.*unaffected
LinuxLinux5.13 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References