CVE-2021-47049

Published: Feb 28, 2024

Modified: May 23, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: Drivers: hv: vmbus: Use after free in __vmbus_open() The "open_info" variable is added to the &vmbus_connection.chn_msg_list, but the error handling frees "open_info" without removing it from the list. This will result in a use after free. First remove it from the list, and then free it.

Vendor	Product	Versions
Linux	Linux	affected `6f3d791f300618caf82a2be0c27456edd76d5164 - < d5c7b42c9f56ca46b286daa537d181bd7f69214f` affected `6f3d791f300618caf82a2be0c27456edd76d5164 - < f37dd5d1b5d38a79a4f7b8dd7bbb705505f05560` affected `6f3d791f300618caf82a2be0c27456edd76d5164 - < 2728f289b3270b0e273292b46c534421a33bbfd5` affected `6f3d791f300618caf82a2be0c27456edd76d5164 - < 3e9bf43f7f7a46f21ec071cb47be92d0874c48da` affected `6b32d45bd59982751beb8220e442b40b2706647f` +1 more versions
Linux	Linux	affected `4.14` unaffected `0 - < 4.14` unaffected `5.10.37 - <= 5.10.` unaffected `5.11.21 - <= 5.11.` unaffected `5.12.4 - <= 5.12.*` +1 more versions

References

https://git.kernel.org/stable/c/d5c7b42c9f56ca46b286daa537d181bd7f69214f

https://git.kernel.org/stable/c/f37dd5d1b5d38a79a4f7b8dd7bbb705505f05560

https://git.kernel.org/stable/c/2728f289b3270b0e273292b46c534421a33bbfd5

https://git.kernel.org/stable/c/3e9bf43f7f7a46f21ec071cb47be92d0874c48da

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-47049

Description

Affected Products

References