{"id":"CVE-2021-47306","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet: fddi: fix UAF in fza_probe\n\nfp is netdev private data and it cannot be\nused after free_netdev() call. Using fp after free_netdev()\ncan cause UAF bug. Fix it by moving free_netdev() after error message.\n\nTURBOchannel adapter\")","modified":"2026-03-15T22:43:11.021249Z","published":"2024-05-21T15:15:18.250Z","references":[{"type":"FIX","url":"https://git.kernel.org/stable/c/bdfbb51f7a437ae8ea91317a5c133ec13adf3c47"},{"type":"FIX","url":"https://git.kernel.org/stable/c/deb7178eb940e2c5caca1b1db084a69b2e59b4c9"},{"type":"FIX","url":"https://git.kernel.org/stable/c/f33605908a9b6063525e9f68e62d739948c5fccf"},{"type":"FIX","url":"https://git.kernel.org/stable/c/04b06716838bfc26742dbed3ae1d3697fe5317ee"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-47306.json","unresolved_ranges":[{"events":[{"introduced":"4.20"},{"fixed":"5.4.135"}]},{"events":[{"introduced":"5.5"},{"fixed":"5.10.53"}]},{"events":[{"introduced":"5.11"},{"fixed":"5.13.5"}]},{"events":[{"introduced":"0"},{"last_affected":"5.14-rc1"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}