CVE-2021-47096
4
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Summary
In the Linux kernel, the following vulnerability has been resolved:
ALSA: rawmidi - fix the uninitalized user_pversion
The user_pversion was uninitialized for the user space file structure in the open function, because the file private structure use kmalloc for the allocation.
The kernel ALSA sequencer code clears the file structure, so no additional fixes are required.
BugLink: https://github.com/alsa-project/alsa-lib/issues/178
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 09d23174402da0f10e98da2c61bb5ac8e7d79fdd < b398fcbe4de1e1100867fdb6f447c6fbc8fe7085 | affected |
| Linux | Linux | 09d23174402da0f10e98da2c61bb5ac8e7d79fdd < 39a8fc4971a00d22536aeb7d446ee4a97810611b | affected |
| Linux | Linux | 12d50801497235956fb3760be8530f4e44e4ce67 | affected |
| Linux | Linux | 5.14.10 < 5.15 | affected |
| Linux | Linux | 5.15 | affected |
| Linux | Linux | 0 < 5.15 | unaffected |
| Linux | Linux | 5.15.12 <= 5.15.* | unaffected |
| Linux | Linux | 5.16 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
CVE Program Container
Additional References
- https://git.kernel.org/stable/c/b398fcbe4de1e1100867fdb6f447c6fbc8fe7085
- https://git.kernel.org/stable/c/39a8fc4971a00d22536aeb7d446ee4a97810611b
References
- https://git.kernel.org/stable/c/b398fcbe4de1e1100867fdb6f447c6fbc8fe7085
- https://git.kernel.org/stable/c/39a8fc4971a00d22536aeb7d446ee4a97810611b
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.