CVE-2021-47083

Summary

In the Linux kernel, the following vulnerability has been resolved:

pinctrl: mediatek: fix global-out-of-bounds issue

When eint virtual eint number is greater than gpio number, it maybe produce 'desc[eint_n]' size globle-out-of-bounds issue.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxfb5fa8dc151b2364c975a9070eedb28a354a995a < f373298e1bf0c6ea097c0bcc558dc43ad53e421faffected
LinuxLinuxfb5fa8dc151b2364c975a9070eedb28a354a995a < 441d3873664d170982922c5d2fc01fa89d9439edaffected
LinuxLinuxfb5fa8dc151b2364c975a9070eedb28a354a995a < fb563baa3eb8e7a15f2cff3c2695e2cca0493e69affected
LinuxLinuxfb5fa8dc151b2364c975a9070eedb28a354a995a < 2d5446da5acecf9c67db1c9d55ae2c3e5de01f8daffected
LinuxLinux4.20affected
LinuxLinux0 < 4.20unaffected
LinuxLinux5.4.169 <= 5.4.*unaffected
LinuxLinux5.10.89 <= 5.10.*unaffected
LinuxLinux5.15.12 <= 5.15.*unaffected
LinuxLinux5.16 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References