In the Linux kernel, the following vulnerability has been resolved:
net: hso: fix NULL-deref on disconnect regression
Commit 8a12f8836145 ("net: hso: fix null-ptr-deref during tty device
unregistration") fixed the racy minor allocation reported by syzbot, but
introduced an unconditional NULL-pointer dereference on every disconnect
instead.
Specifically, the serial device table must no longer be accessed after
the minor has been released by hso_serial_tty_unregister().
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: Linux
Published: 2024-02-25T14:03:40.944Z
Updated: 2024-08-04T05:17:42.986Z
Reserved: 2024-02-25T13:45:52.717Z
Link: CVE-2021-46905
Vulnrichment
Updated: 2024-08-04T05:17:42.986Z
NVD
Status : Analyzed
Published: 2024-02-26T16:27:45.367
Modified: 2024-04-17T19:30:05.020
Link: CVE-2021-46905
Redhat