CVE-2021-47569— io_uring: fail cancellation for EXITING tasks
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2021-47569
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
io_uring: fail cancellation for EXITING tasks
Source: NVD (National Vulnerability Database)
Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: io_uring: fail cancellation for EXITING tasks WARNING: CPU: 1 PID: 20 at fs/io_uring.c:6269 io_try_cancel_userdata+0x3c5/0x640 fs/io_uring.c:6269 CPU: 1 PID: 20 Comm: kworker/1:0 Not tainted 5.16.0-rc1-syzkaller #0 Workqueue: events io_fallback_req_func RIP: 0010:io_try_cancel_userdata+0x3c5/0x640 fs/io_uring.c:6269 Call Trace: <TASK> io_req_task_link_timeout+0x6b/0x1e0 fs/io_uring.c:6886 io_fallback_req_func+0xf9/0x1ae fs/io_uring.c:1334 process_one_work+0x9b2/0x1690 kernel/workqueue.c:2298 worker_thread+0x658/0x11f0 kernel/workqueue.c:2445 kthread+0x405/0x4f0 kernel/kthread.c:327 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:295 </TASK> We need original task's context to do cancellations, so if it's dying and the callback is executed in a fallback mode, fail the cancellation attempt.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Linux kernel 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel 存在安全漏洞,该漏洞源于 io_uring 模块EXITING 任务取消失败。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2021-47569
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2021-47569
请登录查看更多情报信息。
Same Patch Batch · Linux · 2024-05-24 · 73 CVEs total
| CVE-2021-47547 | net: tulip: de4x5: fix the problem that the array 'lp->phy[8]' may be out of bound | |
| CVE-2021-47568 | ksmbd: fix memleak in get_file_stream_info() | |
| CVE-2021-47566 | proc/vmcore: fix clearing user buffer by properly using clear_user() | |
| CVE-2021-47555 | net: vlan: fix underflow for the real_dev refcnt | |
| CVE-2021-47553 | sched/scs: Reset task stack state in bringup_cpu() | |
| CVE-2021-47551 | drm/amd/amdkfd: Fix kernel panic when reset failed and been triggered again | |
| CVE-2021-47552 | blk-mq: cancel blk-mq dispatch work in both blk_cleanup_queue and disk_release() | |
| CVE-2021-47550 | drm/amd/amdgpu: fix potential memleak | |
| CVE-2021-47548 | ethernet: hisilicon: hns: hns_dsaf_misc: fix a possible array overflow in hns_dsaf_ge_srst | |
| CVE-2021-47549 | sata_fsl: fix UAF in sata_fsl_port_stop when rmmod sata_fsl | |
| CVE-2021-47554 | vdpa_sim: avoid putting an uninitialized iova_domain | |
| CVE-2021-47546 | ipv6: fix memory leak in fib6_rule_suppress | |
| CVE-2021-47544 | tcp: fix page frag corruption on page fault | |
| CVE-2021-47542 | net: qlogic: qlcnic: Fix a NULL pointer dereference in qlcnic_83xx_add_rings() | |
| CVE-2021-47541 | net/mlx4_en: Fix an use-after-free bug in mlx4_en_try_alloc_resources() | |
| CVE-2021-47540 | mt76: mt7915: fix NULL pointer dereference in mt7915_get_phy_mode | |
| CVE-2021-47539 | rxrpc: Fix rxrpc_peer leak in rxrpc_look_up_bundle() | |
| CVE-2021-47538 | rxrpc: Fix rxrpc_local leak in rxrpc_lookup_peer() | |
| CVE-2021-47536 | net/smc: fix wrong list_del in smc_lgr_cleanup_early | |
| CVE-2021-47537 | octeontx2-af: Fix a memleak bug in rvu_mbox_init() |
Showing top 20 of 73 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same product: Linux
- CVE-2026-43500
rxrpc: Also unshare DATA/RESPONSE packets when paged frags a - CVE-2026-43475
scsi: storvsc: Fix scheduling while atomic on PREEMPT_RT - CVE-2026-43474
fs: init flags_valid before calling vfs_fileattr_get - CVE-2026-43473
scsi: mpi3mr: Add NULL checks when resetting request and rep - CVE-2026-43472
unshare: fix unshare_fs() handling
Same vendor: Linux
- CVE-2026-43500
rxrpc: Also unshare DATA/RESPONSE packets when paged frags a - CVE-2026-43475
scsi: storvsc: Fix scheduling while atomic on PREEMPT_RT - CVE-2026-43474
fs: init flags_valid before calling vfs_fileattr_get - CVE-2026-43473
scsi: mpi3mr: Add NULL checks when resetting request and rep - CVE-2026-43472
unshare: fix unshare_fs() handling
V. Comments for CVE-2021-47569
No comments yet