CVE-2021-47207

Summary

In the Linux kernel, the following vulnerability has been resolved:

ALSA: gus: fix null pointer dereference on pointer block

The pointer block return from snd_gf1_dma_next_block could be null, so there is a potential null pointer dereference issue. Fix this by adding a null check before dereference.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 3e28e083dcdf03a18a083f8a47b6bb6b1604b5beaffected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < cb09c760c201f82df83babc92a5ffea0a01807fcaffected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 542fa721594a02d2aee0370a764d306ef48d030caffected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < ab4c1ebc40f699f48346f634d7b72b9c5193f315affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < c6d2cefdd05c4810c416fb8d384b5c377bd977bcaffected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 1ac6cd87d8ddd36c43620f82c4d65b058f725f0faffected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 16721797dcef2c7c030ffe73a07f39a65f9323c3affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < a0d21bb3279476c777434c40d969ea88ca64f9aaaffected
LinuxLinux2.6.12affected
LinuxLinux0 < 2.6.12unaffected
LinuxLinux4.4.293 <= 4.4.*unaffected
LinuxLinux4.9.291 <= 4.9.*unaffected
LinuxLinux4.14.256 <= 4.14.*unaffected
LinuxLinux4.19.218 <= 4.19.*unaffected
LinuxLinux5.4.162 <= 5.4.*unaffected
LinuxLinux5.10.82 <= 5.10.*unaffected
LinuxLinux5.15.5 <= 5.15.*unaffected
LinuxLinux5.16 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References