Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistLinuxCVELIST:CVE-2021-47348
HistoryMay 21, 2024 - 2:35 p.m.

CVE-2021-47348 drm/amd/display: Avoid HDCP over-read and corruption

2024-05-2114:35:53
Linux
www.cve.org
9
linux kernel
vulnerability
hdcp
over-read
corruption
amd
display
u64
cve-2021-47348

AI Score

6.5

Confidence

Low

EPSS

0

Percentile

15.5%

JSON

In the Linux kernel, the following vulnerability has been resolved:

drm/amd/display: Avoid HDCP over-read and corruption

Instead of reading the desired 5 bytes of the actual target field,
the code was reading 8. This could result in a corrupted value if the
trailing 3 bytes were non-zero, so instead use an appropriately sized
and zero-initialized bounce buffer, and read only 5 bytes before casting
to u64.

CNA Affected

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/gpu/drm/amd/display/modules/hdcp/hdcp1_execution.c"
    ],
    "versions": [
      {
        "version": "1da177e4c3f4",
        "lessThan": "c5b518f4b98d",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "1da177e4c3f4",
        "lessThan": "44c7c901cb36",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "1da177e4c3f4",
        "lessThan": "3b2b93a485fb",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "1da177e4c3f4",
        "lessThan": "06888d571b51",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/gpu/drm/amd/display/modules/hdcp/hdcp1_execution.c"
    ],
    "versions": [
      {
        "version": "5.10.51",
        "lessThanOrEqual": "5.10.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.12.18",
        "lessThanOrEqual": "5.12.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.13.3",
        "lessThanOrEqual": "5.13.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.14",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Related

redhatcve 1
nvd 1
osv 1
ubuntucve 1
vulnrichment 1
debiancve 1
cve 1
openvas 1
nessus 1
redhatcve
redhatcve
CVE-2021-47348
2024-05-22 11:26:11
nvd
nvd
CVE-2021-47348
2024-05-21 15:15:21
osv
osv
CVE-2021-47348
2024-05-21 15:15:00
ubuntucve
ubuntucve
CVE-2021-47348
2024-05-21 00:00:00
vulnrichment
vulnrichment
CVE-2021-47348 drm/amd/display: Avoid HDCP over-read and corruption
2024-05-21 14:35:53
debiancve
debiancve
CVE-2021-47348
2024-05-21 15:15:21
cve
cve
CVE-2021-47348
2024-05-21 15:15:21
openvas
openvas
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2024:2185-1)
2024-06-29 00:00:00
nessus
nessus
SUSE SLES15 Security Update : kernel (SUSE-SU-2024:2185-1)
2024-06-25 00:00:00

AI Score

6.5

Confidence

Low

EPSS

0

Percentile

15.5%

JSON
Related for CVELIST:CVE-2021-47348
redhatcve1nvd1osv1ubuntucve1vulnrichment1debiancve1cve1openvas1nessus1