CVE-2021-47479

Published: May 22, 2024

Modified: May 23, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8712: fix use-after-free in rtl8712_dl_fw Syzbot reported use-after-free in rtl8712_dl_fw(). The problem was in race condition between r871xu_dev_remove() ->ndo_open() callback. It's easy to see from crash log, that driver accesses released firmware in ->ndo_open() callback. It may happen, since driver was releasing firmware _before_ unregistering netdev. Fix it by moving unregister_netdev() before cleaning up resources. Call Trace: ... rtl871x_open_fw drivers/staging/rtl8712/hal_init.c:83 [inline] rtl8712_dl_fw+0xd95/0xe10 drivers/staging/rtl8712/hal_init.c:170 rtl8712_hal_init drivers/staging/rtl8712/hal_init.c:330 [inline] rtl871x_hal_init+0xae/0x180 drivers/staging/rtl8712/hal_init.c:394 netdev_open+0xe6/0x6c0 drivers/staging/rtl8712/os_intfs.c:380 __dev_open+0x2bc/0x4d0 net/core/dev.c:1484 Freed by task 1306: ... release_firmware+0x1b/0x30 drivers/base/firmware_loader/main.c:1053 r871xu_dev_remove+0xcc/0x2c0 drivers/staging/rtl8712/usb_intf.c:599 usb_unbind_interface+0x1d8/0x8d0 drivers/usb/core/driver.c:458

Vendor	Product	Versions
Linux	Linux	affected `8c213fa59199f9673d66970d6940fa093186642f - < c430094541a80575259a94ff879063ef01473506` affected `8c213fa59199f9673d66970d6940fa093186642f - < befd23bd3b17f1a3f9c943a8580b47444c7c63ed` affected `8c213fa59199f9673d66970d6940fa093186642f - < a65c9afe9f2f55b7a7fb4a25ab654cd4139683a4` affected `8c213fa59199f9673d66970d6940fa093186642f - < c052cc1a069c3e575619cf64ec427eb41176ca70` affected `bc5d453eab4506cb52397db8830d1070904265a4` +1 more versions
Linux	Linux	affected `3.3` unaffected `0 - < 3.3` unaffected `5.10.79 - <= 5.10.` unaffected `5.14.18 - <= 5.14.` unaffected `5.15.2 - <= 5.15.*` +1 more versions

References

https://git.kernel.org/stable/c/c430094541a80575259a94ff879063ef01473506

https://git.kernel.org/stable/c/befd23bd3b17f1a3f9c943a8580b47444c7c63ed

https://git.kernel.org/stable/c/a65c9afe9f2f55b7a7fb4a25ab654cd4139683a4

https://git.kernel.org/stable/c/c052cc1a069c3e575619cf64ec427eb41176ca70

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-47479

Description

Affected Products

References