Wind River Support Network

HomeDefectsLIN1021-3552
Not to be fixed

LIN1021-3552 : Security Advisory - linux - CVE-2022-1247

Created: May 12, 2022    Updated: Nov 17, 2023
Resolved Date: Nov 17, 2023
Found In Version: 10.21.20.1
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Kernel

Description

An issue found in linux-kernel that leads to a race condition in rose_connect(). The rose driver uses rose_neigh->use to represent how many objects are using the rose_neigh. When a user wants to delete a rose_route via rose_ioctl(), the rose driver calls rose_del_node() and removes neighbours only if their “count” and “use” are zero.

https://nvd.nist.gov/vuln/detail/CVE-2022-1247
Live chat
Online