CVE-2021-47347
8.8
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
wl1251: Fix possible buffer overflow in wl1251_cmd_scan
Function wl1251_cmd_scan calls memcpy without checking the length. Harden by checking the length is within the maximum allowed size.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 2f01a1f58889fbfeb68b1bc1b52e4197f3333490 < 57ad99ae3c6738ba87bad259bb57c641ca68ebf6 | affected |
| Linux | Linux | 2f01a1f58889fbfeb68b1bc1b52e4197f3333490 < d3d8b9c9c7843dce31e284927d4c9904fd5a510a | affected |
| Linux | Linux | 2f01a1f58889fbfeb68b1bc1b52e4197f3333490 < 0f6c0488368c9ac1aa685821916fadba32f5d1ef | affected |
| Linux | Linux | 2f01a1f58889fbfeb68b1bc1b52e4197f3333490 < 115103f6e3f1c26c473766c16439c7c8b235529a | affected |
| Linux | Linux | 2f01a1f58889fbfeb68b1bc1b52e4197f3333490 < d71dddeb5380613f9ef199f3e7368fd78fb1a46e | affected |
| Linux | Linux | 2f01a1f58889fbfeb68b1bc1b52e4197f3333490 < c5e4a10d7bd5d4f419d8b9705dff60cf69b302a1 | affected |
| Linux | Linux | 2f01a1f58889fbfeb68b1bc1b52e4197f3333490 < 302e2ee34c5f7c5d805b7f835d9a6f2b43474e2a | affected |
| Linux | Linux | 2f01a1f58889fbfeb68b1bc1b52e4197f3333490 < 40af3960a15339e8bbd3be50c3bc7b35e1a0b6ea | affected |
| Linux | Linux | 2f01a1f58889fbfeb68b1bc1b52e4197f3333490 < d10a87a3535cce2b890897914f5d0d83df669c63 | affected |
| Linux | Linux | 2.6.31 | affected |
| Linux | Linux | 0 < 2.6.31 | unaffected |
| Linux | Linux | 4.4.276 <= 4.4.* | unaffected |
| Linux | Linux | 4.9.276 <= 4.9.* | unaffected |
| Linux | Linux | 4.14.240 <= 4.14.* | unaffected |
| Linux | Linux | 4.19.198 <= 4.19.* | unaffected |
| Linux | Linux | 5.4.133 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.51 <= 5.10.* | unaffected |
| Linux | Linux | 5.12.18 <= 5.12.* | unaffected |
| Linux | Linux | 5.13.3 <= 5.13.* | unaffected |
| Linux | Linux | 5.14 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
CVE Program Container
Additional References
- https://git.kernel.org/stable/c/57ad99ae3c6738ba87bad259bb57c641ca68ebf6
- https://git.kernel.org/stable/c/d3d8b9c9c7843dce31e284927d4c9904fd5a510a
- https://git.kernel.org/stable/c/0f6c0488368c9ac1aa685821916fadba32f5d1ef
- https://git.kernel.org/stable/c/115103f6e3f1c26c473766c16439c7c8b235529a
- https://git.kernel.org/stable/c/d71dddeb5380613f9ef199f3e7368fd78fb1a46e
- https://git.kernel.org/stable/c/c5e4a10d7bd5d4f419d8b9705dff60cf69b302a1
- https://git.kernel.org/stable/c/302e2ee34c5f7c5d805b7f835d9a6f2b43474e2a
- https://git.kernel.org/stable/c/40af3960a15339e8bbd3be50c3bc7b35e1a0b6ea
- https://git.kernel.org/stable/c/d10a87a3535cce2b890897914f5d0d83df669c63
References
- https://git.kernel.org/stable/c/57ad99ae3c6738ba87bad259bb57c641ca68ebf6
- https://git.kernel.org/stable/c/d3d8b9c9c7843dce31e284927d4c9904fd5a510a
- https://git.kernel.org/stable/c/0f6c0488368c9ac1aa685821916fadba32f5d1ef
- https://git.kernel.org/stable/c/115103f6e3f1c26c473766c16439c7c8b235529a
- https://git.kernel.org/stable/c/d71dddeb5380613f9ef199f3e7368fd78fb1a46e
- https://git.kernel.org/stable/c/c5e4a10d7bd5d4f419d8b9705dff60cf69b302a1
- https://git.kernel.org/stable/c/302e2ee34c5f7c5d805b7f835d9a6f2b43474e2a
- https://git.kernel.org/stable/c/40af3960a15339e8bbd3be50c3bc7b35e1a0b6ea
- https://git.kernel.org/stable/c/d10a87a3535cce2b890897914f5d0d83df669c63
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.