VYPR
High severity7.8NVD Advisory· Published Mar 15, 2024· Updated Jun 17, 2026

CVE-2021-47123

CVE-2021-47123

Description

In the Linux kernel, the following vulnerability has been resolved:

io_uring: fix ltout double free on completion race

Always remove linked timeout on io_link_timeout_fn() from the master request link list, otherwise we may get use-after-free when first io_link_timeout_fn() puts linked timeout in the fail path, and then will be found and put on master's free.

Affected products

2
  • Linux/Kernelllm-fuzzy2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: 5.11

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.