In the Linux kernel, the following vulnerability has been resolved: iio: core: fix ioctl handlers removal Currently ioctl handlers are removed twice. For the first time during iio_device_unregister() then later on inside iio_device_unregister_eventset() and iio_buffers_free_sysfs_and_mask(). Double free leads to kernel panic. Fix this by not touching ioctl handlers list directly but rather letting code responsible for registration call the matching cleanup routine itself.
History

Mon, 04 Nov 2024 13:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2024-02-28T08:13:09.736Z

Updated: 2024-12-19T07:32:56.630Z

Reserved: 2024-02-27T18:42:55.945Z

Link: CVE-2021-46979

cve-icon Vulnrichment

Updated: 2024-08-04T05:24:38.457Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-02-28T09:15:37.230

Modified: 2024-11-21T06:35:06.310

Link: CVE-2021-46979

cve-icon Redhat

Severity : Low

Publid Date: 2024-02-28T00:00:00Z

Links: CVE-2021-46979 - Bugzilla