CVE-2021-46966
Published: Feb 27, 2024
Modified: May 23, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: ACPI: custom_method: fix potential use-after-free issue In cm_write(), buf is always freed when reaching the end of the function. If the requested count is less than table.length, the allocated buffer will be freed but subsequent calls to cm_write() will still try to access it. Remove the unconditional kfree(buf) at the end of the function and set the buf to NULL in the -EINVAL error path to match the rest of function.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 4bda2b79a9d04c8ba31681c66e95877dbb433416 - < 1d53ca5d131074c925ce38361fb0376d3bf7e394affected 5c12dadcbef8cd55ef1f5dac799bfcbb7ea7db1d - < 8b04d57f30caf76649d0567551589af9a66ca9beaffected 35b88a10535edcf62d3e6b7893a8cd506ff98a24 - < 90575d1d9311b753cf1718f4ce9061ddda7dfd23affected e4467fb6ef547aa352dc03397f9474ec84eced5b - < a5b26a2e362f572d87e9fd35435680e557052a17affected 03d1571d9513369c17e6848476763ebbd10ec2cb - < 72814a94c38a33239793f7622cec6ace1e540c4b+12 more versions |
Linux | Linux | affected 5.4unaffected 0 - < 5.4unaffected 4.4.269 - <= 4.4.*unaffected 4.9.269 - <= 4.9.*unaffected 4.14.233 - <= 4.14.*+6 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now