CVE-2021-46998
Published: Feb 28, 2024
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: ethernet:enic: Fix a use after free bug in enic_hard_start_xmit In enic_hard_start_xmit, it calls enic_queue_wq_skb(). Inside enic_queue_wq_skb, if some error happens, the skb will be freed by dev_kfree_skb(skb). But the freed skb is still used in skb_tx_timestamp(skb). My patch makes enic_queue_wq_skb() return error and goto spin_unlock() incase of error. The solution is provided by Govind. See https://lkml.org/lkml/2021/4/30/961.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected fb7516d42478ebc8e2f00efb76ef96f7b68fd8d3 - < 25a87b1f566b5eb2af2857a928f0e2310d900976affected fb7516d42478ebc8e2f00efb76ef96f7b68fd8d3 - < f7f6f07774091a6ddd98500b85386c3c6afb30d3affected fb7516d42478ebc8e2f00efb76ef96f7b68fd8d3 - < 7afdd6aba95c8a526038e7abe283eeac3e4320f1affected fb7516d42478ebc8e2f00efb76ef96f7b68fd8d3 - < 6892396ebf04ea2c021d80e10f4075e014cd7cc3affected fb7516d42478ebc8e2f00efb76ef96f7b68fd8d3 - < d90529392aaf498dafa95d212295d64b2cea4e24+1 more versions |
Linux | Linux | affected 4.16unaffected 0 - < 4.16unaffected 4.19.191 - <= 4.19.*unaffected 5.4.120 - <= 5.4.*unaffected 5.10.38 - <= 5.10.*+3 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now