CVE-2021-47634: 
Linux Kernel vulnerability analysis and mitigation

A race condition vulnerability was discovered in the Linux kernel's UBI (Unsorted Block Images) subsystem between ctrl_cdev_ioctl and ubi_cdev_ioctl functions. The vulnerability was reported by Hulk Robot and involves a use-after-free condition that could occur due to improper locking mechanisms. The issue affects the Linux kernel's UBI driver, which is used for flash memory management (NVD).

The vulnerability stems from a race condition where two different locks (ubi_devices_mutex and ubi->device_mutex) can be held concurrently by ctrl_cdev_ioctl and ubi_cdev_ioctl functions. While ubi_detach operation is protected by reference counting, both uif_init and uif_close in ubi_attach may race with ubi_cdev_ioctl. The issue was triggered by making a device 'available' before it becomes accessible via sysfs, leading to potential use-after-free conditions. The vulnerability has been assigned a CVSS v3.1 Base Score of 7.8 (HIGH) with vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H (CISA-ADP).

The vulnerability could lead to use-after-free conditions, potentially resulting in system crashes, information leaks, or arbitrary code execution in the context of the kernel. The issue specifically affects the UBI subsystem's ability to safely manage flash memory devices and could compromise the system's stability and security (NVD).

The vulnerability has been fixed by rolling back the problematic modification and removing ubi_get_device in vol_attribute_show and dev_attribute_show functions. The fix ensures that devices will not be deleted before all reference counting are released, using kernfs's built-in protection mechanisms. The patch has been merged into the Linux kernel (Kernel Patch).