CVE-2021-46994

Summary

In the Linux kernel, the following vulnerability has been resolved:

can: mcp251x: fix resume from sleep before interface was brought up

Since 8ce8c0abcba3 the driver queues work via priv->restart_work when resuming after suspend, even when the interface was not previously enabled. This causes a null dereference error as the workqueue is only allocated and initialized in mcp251x_open().

To fix this we move the workqueue init to mcp251x_can_probe() as there is no reason to do it later and repeat it whenever mcp251x_open() is called.

[mkl: fix error handling in mcp251x_stop()]

Affected Software

VendorProductVersion RangeStatus
LinuxLinux8ce8c0abcba314e1fe954a1840f6568bf5aef2ef < eecb4df8ec9f896b19ee05bfa632ac6c1dcd8f21affected
LinuxLinux8ce8c0abcba314e1fe954a1840f6568bf5aef2ef < 6f8f1c27b577de15f69fefce3c502bb6300d825caffected
LinuxLinux8ce8c0abcba314e1fe954a1840f6568bf5aef2ef < e1e10a390fd9479209c4d834d916ca5e6d5d396baffected
LinuxLinux8ce8c0abcba314e1fe954a1840f6568bf5aef2ef < 03c427147b2d3e503af258711af4fc792b89b0afaffected
LinuxLinux5.5affected
LinuxLinux0 < 5.5unaffected
LinuxLinux5.10.38 <= 5.10.*unaffected
LinuxLinux5.11.22 <= 5.11.*unaffected
LinuxLinux5.12.5 <= 5.12.*unaffected
LinuxLinux5.13 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References