VDB

CISA-2021-47123

CISA-2021-47123 PUBLISHED

Reported by Linux · Published March 15, 2024

In the Linux kernel, the following vulnerability has been resolved: io_uring: fix ltout double free on completion race Always remove linked timeout on io_link_timeout_fn() from the master request link list, otherwise we may get use-after-free when first io_link_timeout_fn() puts linked timeout in the fail path, and then will be found and put on master's free.

Affected Products

VendorProductVersions
LinuxLinux90cd7e424969d29aff653333b4dcb4e2e199d791, 90cd7e424969d29aff653333b4dcb4e2e199d791
LinuxLinux5.11, 0, 5.12.10
LinuxLinux*, 5.12.10, 5.13
linuxlinux_kernel5.11, 5.11, 5.11

Timeline

  • Mar 15, 2024 CVE Published
  • May 4, 2025 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›