CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
Low
EPSS
Percentile
5.1%
A flaw was found in the Linux Kernel. The WQ size can only be changed when the device is disabled. The current code allows change when the device is enabled but WQ is disabled. Change the check to detect the device state.
bugzilla.redhat.com/show_bug.cgi?id=2266397
git.kernel.org/stable/c/05b7791c4c4aa8304368fdc55ae911f6b34e7281
git.kernel.org/stable/c/0fff71c5a311e1264988179f7dcc217fda15fadd
git.kernel.org/stable/c/4ecf25595273203010bc8318c4aee60ad64037ae
nvd.nist.gov/vuln/detail/CVE-2021-46919
www.cve.org/CVERecord?id=CVE-2021-46919