In the Linux kernel, the following vulnerability has been resolved:
can: mcp251x: fix resume from sleep before interface was brought up
Since 8ce8c0abcba3 the driver queues work via priv->restart_work when
resuming after suspend, even when the interface was not previously
enabled. This causes a null dereference error as the workqueue is only
allocated and initialized in mcp251x_open().
To fix this we move the workqueue init to mcp251x_can_probe() as there
is no reason to do it later and repeat it whenever mcp251x_open() is
called.
[mkl: fix error handling in mcp251x_stop()]
Metrics
Affected Vendors & Products
References
History
Wed, 11 Sep 2024 18:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Wed, 11 Sep 2024 13:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: Linux
Published: 2024-02-28T08:13:19.115Z
Updated: 2024-09-11T17:33:38.479Z
Reserved: 2024-02-27T18:42:55.949Z
Link: CVE-2021-46994
Vulnrichment
Updated: 2024-08-04T05:24:38.558Z
NVD
Status : Awaiting Analysis
Published: 2024-02-28T09:15:37.923
Modified: 2024-02-28T14:06:45.783
Link: CVE-2021-46994
Redhat