CVE-2021-47061

Published: Feb 29, 2024

Modified: May 23, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: KVM: Destroy I/O bus devices on unregister failure _after_ sync'ing SRCU If allocating a new instance of an I/O bus fails when unregistering a device, wait to destroy the device until after all readers are guaranteed to see the new null bus. Destroying devices before the bus is nullified could lead to use-after-free since readers expect the devices on their reference of the bus to remain valid.

Vendor	Product	Versions
Linux	Linux	affected `f65886606c2d3b562716de030706dfe1bea4ed5e - < 03c6cccedd3913006744faa252a4da5145299343` affected `f65886606c2d3b562716de030706dfe1bea4ed5e - < 4e899ca848636b37e9ac124bc1723862a7d7d927` affected `f65886606c2d3b562716de030706dfe1bea4ed5e - < 30f46c6993731efb2a690c9197c0fd9ed425da2d` affected `f65886606c2d3b562716de030706dfe1bea4ed5e - < 2ee3757424be7c1cd1d0bbfa6db29a7edd82a250` affected `f0dfffce3f4ffd5f822568a4a6fb34c010e939d1` +11 more versions
Linux	Linux	affected `5.9` unaffected `0 - < 5.9` unaffected `5.10.37 - <= 5.10.` unaffected `5.11.21 - <= 5.11.` unaffected `5.12.4 - <= 5.12.*` +1 more versions

References

https://git.kernel.org/stable/c/03c6cccedd3913006744faa252a4da5145299343

https://git.kernel.org/stable/c/4e899ca848636b37e9ac124bc1723862a7d7d927

https://git.kernel.org/stable/c/30f46c6993731efb2a690c9197c0fd9ed425da2d

https://git.kernel.org/stable/c/2ee3757424be7c1cd1d0bbfa6db29a7edd82a250

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-47061

Description

Affected Products

References