In the Linux kernel, the following vulnerability has been resolved:
i40e: Fix use-after-free in i40e_client_subtask()
Currently the call to i40e_client_del_instance frees the object
pf->cinst, however pf->cinst->lan_info is being accessed after
the free. Fix this by adding the missing return.
Addresses-Coverity: ("Read from pointer after free")
Metrics
Affected Vendors & Products
References
History
Fri, 06 Dec 2024 15:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Linux
Linux linux Kernel |
|
CPEs | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | |
Vendors & Products |
Linux
Linux linux Kernel |
|
Metrics |
cvssV3_1
|
cvssV3_1
|
Mon, 04 Nov 2024 13:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|

Status: PUBLISHED
Assigner: Linux
Published: 2024-02-28T08:13:17.195Z
Updated: 2025-05-04T07:01:52.574Z
Reserved: 2024-02-27T18:42:55.949Z
Link: CVE-2021-46991

Updated: 2024-08-04T05:24:38.447Z

Status : Analyzed
Published: 2024-02-28T09:15:37.787
Modified: 2024-12-06T15:27:56.500
Link: CVE-2021-46991
