CVE-2021-47123

Published: Mar 15, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: io_uring: fix ltout double free on completion race Always remove linked timeout on io_link_timeout_fn() from the master request link list, otherwise we may get use-after-free when first io_link_timeout_fn() puts linked timeout in the fail path, and then will be found and put on master's free.

Vendor	Product	Versions
Linux	Linux	affected `90cd7e424969d29aff653333b4dcb4e2e199d791 - < 1f64f5e903b9d1d157875721e02adadc9d6f0a5d` affected `90cd7e424969d29aff653333b4dcb4e2e199d791 - < 447c19f3b5074409c794b350b10306e1da1ef4ba`
Linux	Linux	affected `5.11` unaffected `0 - < 5.11` unaffected `5.12.10 - <= 5.12.` unaffected `5.13 - <= `

References

https://git.kernel.org/stable/c/1f64f5e903b9d1d157875721e02adadc9d6f0a5d

https://git.kernel.org/stable/c/447c19f3b5074409c794b350b10306e1da1ef4ba

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-47123

Description

Affected Products

References