{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2021-47357","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2024-05-21T14:28:16.987Z","datePublished":"2024-05-21T14:35:59.761Z","dateUpdated":"2025-12-18T11:37:11.584Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2025-12-18T11:37:11.584Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\natm: iphase: fix possible use-after-free in ia_module_exit()\n\nThis module's remove path calls del_timer(). However, that function\ndoes not wait until the timer handler finishes. This means that the\ntimer handler may still be running after the driver's remove function\nhas finished, which would result in a use-after-free.\n\nFix by calling del_timer_sync(), which makes sure the timer handler\nhas finished, and unable to re-schedule itself."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/atm/iphase.c"],"versions":[{"version":"1da177e4c3f41524e886b7f1b8a0c1fc7321cac2","lessThan":"9e161687855175334ca93c6c3ccb221731194479","status":"affected","versionType":"git"},{"version":"1da177e4c3f41524e886b7f1b8a0c1fc7321cac2","lessThan":"a832ee2f2145f57443b2d565f8cb5490e8339f42","status":"affected","versionType":"git"},{"version":"1da177e4c3f41524e886b7f1b8a0c1fc7321cac2","lessThan":"bcdd2be48edd8c6867fb44112cb8d18086beae29","status":"affected","versionType":"git"},{"version":"1da177e4c3f41524e886b7f1b8a0c1fc7321cac2","lessThan":"89ce0b0747f319eb70f85bc820dcc43cebbd5417","status":"affected","versionType":"git"},{"version":"1da177e4c3f41524e886b7f1b8a0c1fc7321cac2","lessThan":"c9172498d4d62c9b64e5fb37c1ee0343e65fe51b","status":"affected","versionType":"git"},{"version":"1da177e4c3f41524e886b7f1b8a0c1fc7321cac2","lessThan":"e759ff76ebbbfcdcf83b6634c54dc47828573d8b","status":"affected","versionType":"git"},{"version":"1da177e4c3f41524e886b7f1b8a0c1fc7321cac2","lessThan":"b58d246a058ae88484758cd4ab27b3180fd5ecf8","status":"affected","versionType":"git"},{"version":"1da177e4c3f41524e886b7f1b8a0c1fc7321cac2","lessThan":"d1fb12412874c94ad037e11d0ecdd1140a439297","status":"affected","versionType":"git"},{"version":"1da177e4c3f41524e886b7f1b8a0c1fc7321cac2","lessThan":"1c72e6ab66b9598cac741ed397438a52065a8f1f","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/atm/iphase.c"],"versions":[{"version":"2.6.12","status":"affected"},{"version":"0","lessThan":"2.6.12","status":"unaffected","versionType":"semver"},{"version":"4.4.276","lessThanOrEqual":"4.4.*","status":"unaffected","versionType":"semver"},{"version":"4.9.276","lessThanOrEqual":"4.9.*","status":"unaffected","versionType":"semver"},{"version":"4.14.240","lessThanOrEqual":"4.14.*","status":"unaffected","versionType":"semver"},{"version":"4.19.198","lessThanOrEqual":"4.19.*","status":"unaffected","versionType":"semver"},{"version":"5.4.133","lessThanOrEqual":"5.4.*","status":"unaffected","versionType":"semver"},{"version":"5.10.51","lessThanOrEqual":"5.10.*","status":"unaffected","versionType":"semver"},{"version":"5.12.18","lessThanOrEqual":"5.12.*","status":"unaffected","versionType":"semver"},{"version":"5.13.3","lessThanOrEqual":"5.13.*","status":"unaffected","versionType":"semver"},{"version":"5.14","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"2.6.12","versionEndExcluding":"4.4.276"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"2.6.12","versionEndExcluding":"4.9.276"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"2.6.12","versionEndExcluding":"4.14.240"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"2.6.12","versionEndExcluding":"4.19.198"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"2.6.12","versionEndExcluding":"5.4.133"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"2.6.12","versionEndExcluding":"5.10.51"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"2.6.12","versionEndExcluding":"5.12.18"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"2.6.12","versionEndExcluding":"5.13.3"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"2.6.12","versionEndExcluding":"5.14"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/9e161687855175334ca93c6c3ccb221731194479"},{"url":"https://git.kernel.org/stable/c/a832ee2f2145f57443b2d565f8cb5490e8339f42"},{"url":"https://git.kernel.org/stable/c/bcdd2be48edd8c6867fb44112cb8d18086beae29"},{"url":"https://git.kernel.org/stable/c/89ce0b0747f319eb70f85bc820dcc43cebbd5417"},{"url":"https://git.kernel.org/stable/c/c9172498d4d62c9b64e5fb37c1ee0343e65fe51b"},{"url":"https://git.kernel.org/stable/c/e759ff76ebbbfcdcf83b6634c54dc47828573d8b"},{"url":"https://git.kernel.org/stable/c/b58d246a058ae88484758cd4ab27b3180fd5ecf8"},{"url":"https://git.kernel.org/stable/c/d1fb12412874c94ad037e11d0ecdd1140a439297"},{"url":"https://git.kernel.org/stable/c/1c72e6ab66b9598cac741ed397438a52065a8f1f"}],"title":"atm: iphase: fix possible use-after-free in ia_module_exit()","x_generator":{"engine":"bippy-1.2.0"}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-04T05:32:08.599Z"},"title":"CVE Program Container","references":[{"url":"https://git.kernel.org/stable/c/9e161687855175334ca93c6c3ccb221731194479","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/a832ee2f2145f57443b2d565f8cb5490e8339f42","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/bcdd2be48edd8c6867fb44112cb8d18086beae29","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/89ce0b0747f319eb70f85bc820dcc43cebbd5417","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/c9172498d4d62c9b64e5fb37c1ee0343e65fe51b","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/e759ff76ebbbfcdcf83b6634c54dc47828573d8b","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/b58d246a058ae88484758cd4ab27b3180fd5ecf8","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/d1fb12412874c94ad037e11d0ecdd1140a439297","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/1c72e6ab66b9598cac741ed397438a52065a8f1f","tags":["x_transferred"]}]},{"metrics":[{"other":{"type":"ssvc","content":{"id":"CVE-2021-47357","role":"CISA Coordinator","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"version":"2.0.3","timestamp":"2024-09-10T15:38:36.127896Z"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2024-09-11T17:33:48.351Z"}}]}}