CVE-2021-47668 can: dev: can_restart: fix use after free bug

April 19, 2025 invoker category_cve

Vulnerability Details

Basic Information

Title CVE-2021-47668 can: dev: can_restart: fix use after free bug
Type vulnrichment
Published 2025-04-17T18:01:29
Last Seen 2025-04-17T19:22:38
CVSS Score 0.0 ()

CVSS v3 Details

Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact

CVE Information

CVE IDs CVE-2021-47668
CWE
Bulletin Family cve

Description

In the Linux kernel, the following vulnerability has been resolved:

can: dev: can_restart: fix use after free bug

After calling netif_rx_ni(skb), dereferencing skb is unsafe.
Especially, the can_frame cf which aliases skb memory is accessed
after the netif_rx_ni() in:
stats->rx_bytes += cf->len;

Reordering the lines solves the issue.

Impact Assessment

Base Score 0.0
Severity

View full CVE details

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.