CVE-2021-47439

Published May 22, 2024

Last updated 20 days ago

CVSS medium 5.5

Overview

Description: In the Linux kernel, the following vulnerability has been resolved: net: dsa: microchip: Added the condition for scheduling ksz_mib_read_work When the ksz module is installed and removed using rmmod, kernel crashes with null pointer dereferrence error. During rmmod, ksz_switch_remove function tries to cancel the mib_read_workqueue using cancel_delayed_work_sync routine and unregister switch from dsa. During dsa_unregister_switch it calls ksz_mac_link_down, which in turn reschedules the workqueue since mib_interval is non-zero. Due to which queue executed after mib_interval and it tries to access dp->slave. But the slave is unregistered in the ksz_switch_remove function. Hence kernel crashes. To avoid this crash, before canceling the workqueue, resetted the mib_interval to 0. v1 -> v2: -Removed the if condition in ksz_mib_read_work
Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Secondary
Base score: 5.5
Impact score: 3.6
Exploitability score: 1.8
Vector string: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Severity: MEDIUM

Weaknesses

nvd@nist.gov: CWE-476

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FE277324-366F-4B37-A969-D1032D5FA58E",
            "versionEndExcluding": "5.10.75",
            "versionStartIncluding": "5.7"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BF43A331-D430-4B9D-A612-E63C62AE4A86",
            "versionEndExcluding": "5.14.14",
            "versionStartIncluding": "5.11"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:5.15:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E46C74C6-B76B-4C94-A6A4-FD2FFF62D644"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:5.15:rc2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "60134C3A-06E4-48C1-B04F-2903732A4E56"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:5.15:rc3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0460DA88-8FE1-46A2-9DDA-1F1ABA552E71"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:5.15:rc4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AF55383D-4DF2-45DC-93F7-571F4F978EAB"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:5.15:rc5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9E9481B2-8AA6-4CBD-B5D3-C10F51FF6D01"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

References