Wind River Support Network

HomeDefectsLIN1021-9563
Fixed

LIN1021-9563 : Security Advisory - linux - CVE-2021-47521

Created: May 24, 2024    Updated: Sep 27, 2024
Resolved Date: Sep 27, 2024
Found In Version: 10.21.20.1
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Kernel

Description

In the Linux kernel, the following vulnerability has been resolved:

can: sja1000: fix use after free in ems_pcmcia_add_card()

If the last channel is not available then "dev" is freed.  Fortunately,
we can just use "pdev->irq" instead.

Also we should check if at least one channel was set up.

CREATE(Triage):(User=admin) CVE-2021-47521 (https://nvd.nist.gov/vuln/detail/CVE-2021-47521)

CVEs


Live chat
Online