Guest triggered use-after-free in Linux xen-netback A malicious or buggy network PV frontend can force Linux netback to disable the interface and terminate the receive kernel thread associated with queue 0 in response to the frontend sending a malformed packet. Such kernel thread termination will lead to a use-after-free in Linux netback when the backend is destroyed, as the kernel thread associated with queue 0 will have already exited and thus the call to kthread_stop will be performed against a stale pointer.
References
Link | Resource |
---|---|
https://security.gentoo.org/glsa/202107-30 | Third Party Advisory |
https://security.netapp.com/advisory/ntap-20210805-0002/ | Third Party Advisory |
https://xenbits.xenproject.org/xsa/advisory-374.txt | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
Configuration 8 (hide)
AND |
|
Configuration 9 (hide)
AND |
|
Configuration 10 (hide)
AND |
|
History
06 Apr 2022, 16:46
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
References | (GENTOO) https://security.gentoo.org/glsa/202107-30 - Third Party Advisory | |
First Time |
Netapp h300e
Netapp h410s Netapp h410c Netapp h410s Firmware Netapp h700s Netapp Netapp h410c Firmware Netapp h500e Firmware Netapp h700e Firmware Netapp h300e Firmware Netapp h500s Firmware Netapp cloud Backup Netapp h300s Firmware Netapp h700s Firmware Netapp h500e Netapp h700e Netapp h500s Netapp h300s |
|
CPE | cpe:2.3:h:netapp:h700e:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h410s_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h300e_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h300s_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h500e:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h300e:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h410c_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h700e_firmware:-:*:*:*:*:*:*:* cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h500e_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h500s_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h700s_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h410c:-:*:*:*:*:*:*:* |
05 Aug 2021, 12:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
06 Jul 2021, 15:34
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-416 | |
CPE | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : 4.6
v3 : 7.8 |
References | (MISC) https://xenbits.xenproject.org/xsa/advisory-374.txt - Third Party Advisory |
29 Jun 2021, 12:30
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-06-29 12:15
Updated : 2023-12-10 13:55
NVD link : CVE-2021-28691
Mitre link : CVE-2021-28691
CVE.ORG link : CVE-2021-28691
JSON object : View
Products Affected
netapp
- h410c
- h500s
- h700s_firmware
- h300e
- h500s_firmware
- h300e_firmware
- h700e
- h410s
- h300s
- h700s
- h700e_firmware
- h300s_firmware
- cloud_backup
- h410s_firmware
- h500e_firmware
- h410c_firmware
- h500e
linux
- linux_kernel
CWE
CWE-416
Use After Free