CVE-2021-47141

Summary

In the Linux kernel, the following vulnerability has been resolved:

gve: Add NULL pointer checks when freeing irqs.

When freeing notification blocks, we index priv->msix_vectors. If we failed to allocate priv->msix_vectors (see abort_with_msix_vectors) this could lead to a NULL pointer dereference if the driver is unloaded.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux893ce44df56580fb878ca5af9c4a5fd87567da50 < 821149ee88c206fa37e79c1868cc270518484876affected
LinuxLinux893ce44df56580fb878ca5af9c4a5fd87567da50 < da21a35c00ff1a1794d4f166d3b3fa8db4d0f6fbaffected
LinuxLinux893ce44df56580fb878ca5af9c4a5fd87567da50 < 5278c75266c5094d3c0958793bf12fc90300e580affected
LinuxLinux893ce44df56580fb878ca5af9c4a5fd87567da50 < 5218e919c8d06279884aa0baf76778a6817d5b93affected
LinuxLinux5.3affected
LinuxLinux0 < 5.3unaffected
LinuxLinux5.4.124 <= 5.4.*unaffected
LinuxLinux5.10.42 <= 5.10.*unaffected
LinuxLinux5.12.9 <= 5.12.*unaffected
LinuxLinux5.13 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References