CVE-2021-46911

low-risk
Published 2024-02-27

In the Linux kernel, the following vulnerability has been resolved: ch_ktls: Fix kernel panic Taking page refcount is not ideal and causes kernel panic sometimes. It's better to take tx_ctx lock for the complete skb transmit, to avoid page cleanup if ACK received in middle.

Do I need to act?

-
0.01% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
5
CVSS 5.5/10 Medium
LOCAL / LOW complexity

Affected Products (1)

Affected Vendors

Linux

References (6)

Patch https://git.kernel.org/stable/c/1a73e427b824133940c2dd95ebe26b6dce1cbf10
Patch https://git.kernel.org/stable/c/8348665d4181c68b0ca1205b48e1753d78bc810f
Patch https://git.kernel.org/stable/c/8d5a9dbd2116a852f8f0f91f6fbc42a0afe1091f
Patch https://git.kernel.org/stable/c/1a73e427b824133940c2dd95ebe26b6dce1cbf10
Patch https://git.kernel.org/stable/c/8348665d4181c68b0ca1205b48e1753d78bc810f
Patch https://git.kernel.org/stable/c/8d5a9dbd2116a852f8f0f91f6fbc42a0afe1091f
23
/ 100
low-risk
Severity 18/34 · Moderate
Exploitability 0/34 · Minimal
Exposure 5/34 · Minimal