ByteOS Network

CVE Vulnerability Details :

CVE-2021-47358

PUBLISHED

More Info Official Page

Assigner-Linux

Assigner Org ID-416baaa9-dc9f-4396-8d5f-8c081fb06d67

Published At-21 May, 2024 | 14:44

Updated At-04 May, 2025 | 07:09

▼CVE Numbering Authority (CNA)

staging: greybus: uart: fix tty use after free

In the Linux kernel, the following vulnerability has been resolved: staging: greybus: uart: fix tty use after free User space can hold a tty open indefinitely and tty drivers must not release the underlying structures until the last user is gone. Switch to using the tty-port reference counter to manage the life time of the greybus tty state to avoid use after free after a disconnect.

Affected Products

Vendor

Linux Kernel Organization, Inc

Product

Linux

Repo

https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Program Files

drivers/staging/greybus/uart.c

Default Status

unaffected

Versions

Affected

From a18e15175708d39abbe9746ddc3479466b7800c3 before 92b67aaafb7c449db9f0c3dcabc0ff967cb3a42d (git)
From a18e15175708d39abbe9746ddc3479466b7800c3 before 64062fcaca8872f063ec9da011e7bf30470be33f (git)
From a18e15175708d39abbe9746ddc3479466b7800c3 before a5cfd51f6348e8fd7531461366946039c29c7e69 (git)
From a18e15175708d39abbe9746ddc3479466b7800c3 before 4dc56951a8d9d61d364d346c61a5f1d70b4f5e14 (git)
From a18e15175708d39abbe9746ddc3479466b7800c3 before b9e697e60ce9890e9258a73eb061288e7d68e5e6 (git)
From a18e15175708d39abbe9746ddc3479466b7800c3 before 9872ff6fdce8b229f01993b611b5d1719cb70ff1 (git)
From a18e15175708d39abbe9746ddc3479466b7800c3 before 92dc0b1f46e12cfabd28d709bb34f7a39431b44f (git)

Vendor

Linux Kernel Organization, Inc

Product

Linux

Repo

https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Program Files

drivers/staging/greybus/uart.c

Default Status

affected

Versions

Affected

Unaffected

From 0 before 4.9 (semver)
From 4.9.285 through 4.9.* (semver)
From 4.14.249 through 4.14.* (semver)
From 4.19.209 through 4.19.* (semver)
From 5.4.150 through 5.4.* (semver)
From 5.10.70 through 5.10.* (semver)
From 5.14.9 through 5.14.* (semver)
From 5.15 through * (original_commit_for_fix)

References

Hyperlink	Resource
https://git.kernel.org/stable/c/92b67aaafb7c449db9f0c3dcabc0ff967cb3a42d	N/A
https://git.kernel.org/stable/c/64062fcaca8872f063ec9da011e7bf30470be33f	N/A
https://git.kernel.org/stable/c/a5cfd51f6348e8fd7531461366946039c29c7e69	N/A
https://git.kernel.org/stable/c/4dc56951a8d9d61d364d346c61a5f1d70b4f5e14	N/A
https://git.kernel.org/stable/c/b9e697e60ce9890e9258a73eb061288e7d68e5e6	N/A
https://git.kernel.org/stable/c/9872ff6fdce8b229f01993b611b5d1719cb70ff1	N/A
https://git.kernel.org/stable/c/92dc0b1f46e12cfabd28d709bb34f7a39431b44f	N/A

▼Authorized Data Publishers (ADP)

1. CISA ADP Vulnrichment

Metrics Other Info

2. CVE Program Container

References

Hyperlink	Resource
https://git.kernel.org/stable/c/92b67aaafb7c449db9f0c3dcabc0ff967cb3a42d	x_transferred
https://git.kernel.org/stable/c/64062fcaca8872f063ec9da011e7bf30470be33f	x_transferred
https://git.kernel.org/stable/c/a5cfd51f6348e8fd7531461366946039c29c7e69	x_transferred
https://git.kernel.org/stable/c/4dc56951a8d9d61d364d346c61a5f1d70b4f5e14	x_transferred
https://git.kernel.org/stable/c/b9e697e60ce9890e9258a73eb061288e7d68e5e6	x_transferred
https://git.kernel.org/stable/c/9872ff6fdce8b229f01993b611b5d1719cb70ff1	x_transferred
https://git.kernel.org/stable/c/92dc0b1f46e12cfabd28d709bb34f7a39431b44f	x_transferred

Affected Products

Affected

Affected

Unaffected

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References