Home

CVE-2021-28691

Description

Guest triggered use-after-free in Linux xen-netback A malicious or buggy network PV frontend can force Linux netback to disable the interface and terminate the receive kernel thread associated with queue 0 in response to the frontend sending a malformed packet. Such kernel thread termination will lead to a use-after-free in Linux netback when the backend is destroyed, as the kernel thread associated with queue 0 will have already exited and thus the call to kthread_stop will be performed against a stale pointer.

Risk Information

Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.031

Associated Vulnerability

VulnerabilityOS Platform
Linux kernel for OEM systems (USN-5015-1) linux-image-oem-20.04_5.10.0.1038.40_amd64.debLinux
Linux kernel for OEM systems (USN-5015-1) linux-image-oem-20.04b_5.10.0.1038.40_amd64.debLinux
Linux kernel for OEM systems (USN-5015-1) linux-image-5.10.0-1038-oem_5.10.0-1038.40_amd64.debLinux
Linux kernel (USN-5046-1) linux-image-aws_5.11.0.1016.17_amd64.debLinux
Linux kernel (USN-5046-1) linux-image-gcp_5.11.0.1017.17_amd64.debLinux
Linux kernel (USN-5046-1) linux-image-gke_5.11.0.1017.17_amd64.debLinux
Linux kernel (USN-5046-1) linux-image-azure_5.11.0.1013.14_amd64.debLinux
Linux kernel (USN-5046-1) linux-image-oracle_5.11.0.1016.17_amd64.debLinux
Linux kernel (USN-5046-1) linux-image-generic_5.11.0.31.33_amd64.debLinux
Linux kernel (USN-5046-1) linux-image-virtual_5.11.0.31.33_amd64.debLinux
Linux kernel (USN-5046-1) linux-image-oem-20.04_5.11.0.31.33_amd64.debLinux
Linux kernel (USN-5046-1) linux-image-lowlatency_5.11.0.31.33_amd64.debLinux
Linux kernel (USN-5046-1) linux-image-5.11.0-1016-aws_5.11.0-1016.17_amd64.debLinux
Linux kernel (USN-5046-1) linux-image-5.11.0-1017-gcp_5.11.0-1017.19_amd64.debLinux
Linux kernel (USN-5046-1) linux-image-5.11.0-1013-azure_5.11.0-1013.14_amd64.debLinux
Linux kernel (USN-5046-1) linux-image-5.11.0-27-generic_5.11.0-27.29~20.04.1_amd64.debLinux
Linux kernel (USN-5046-1) linux-image-5.11.0-31-generic_5.11.0-31.33_amd64.debLinux
Linux kernel (USN-5046-1) linux-image-generic-hwe-20.04_5.11.0.27.29~20.04.11_amd64.debLinux
Linux kernel (USN-5046-1) linux-image-virtual-hwe-20.04_5.11.0.27.29~20.04.11_amd64.debLinux
Linux kernel (USN-5046-1) linux-image-5.11.0-1016-oracle_5.11.0-1016.17_amd64.debLinux
Linux kernel (USN-5046-1) linux-image-5.11.0-27-lowlatency_5.11.0-27.29~20.04.1_amd64.debLinux
Linux kernel (USN-5046-1) linux-image-5.11.0-31-lowlatency_5.11.0-31.33_amd64.debLinux
Linux kernel (USN-5046-1) linux-image-lowlatency-hwe-20.04_5.11.0.27.29~20.04.11_amd64.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-5050-1) linux-image-aws_5.8.0.1042.44~20.04.14_amd64.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-5050-1) linux-image-gcp_5.8.0.1039.14_amd64.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-5050-1) linux-image-azure_5.8.0.1040.43~20.04.12_amd64.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-5050-1) linux-image-oracle_5.8.0.1038.39~20.04.14_amd64.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-5050-1) linux-image-5.8.0-1039-gcp_5.8.0-1039.41_amd64.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-5050-1) linux-image-5.8.0-1042-aws_5.8.0-1042.44~20.04.1_amd64.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-5050-1) linux-image-5.8.0-1040-azure_5.8.0-1040.43~20.04.1_amd64.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-5050-1) linux-image-5.8.0-1038-oracle_5.8.0-1038.39~20.04.1_amd64.debLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234