Ubuntu.comUB:CVE-2021-46917CVE-2021-46917
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
Confidence
High
EPSS
Percentile
15.5%
In the Linux kernel, the following vulnerability has been resolved:
dmaengine: idxd: fix wq cleanup of WQCFG registers A pre-release silicon
erratum workaround where wq reset does not clear WQCFG registers was leaked
into upstream code. Use wq reset command instead of blasting the MMIO
region. This also address an issue where we clobber registers in future
devices.
References
git.kernel.org/linus/ea9aadc06a9f10ad20a90edc0a484f1147d88a7a (5.12-rc8)
git.kernel.org/stable/c/e5eb9757fe4c2392e069246ae78badc573af1833
git.kernel.org/stable/c/ea9aadc06a9f10ad20a90edc0a484f1147d88a7a
git.kernel.org/stable/c/f7dc8f5619165e1fa3383d0c2519f502d9e2a1a9
launchpad.net/bugs/cve/CVE-2021-46917
nvd.nist.gov/vuln/detail/CVE-2021-46917
security-tracker.debian.org/tracker/CVE-2021-46917
www.cve.org/CVERecord?id=CVE-2021-46917
Related
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
Confidence
High
EPSS
Percentile
15.5%