Lucene search

Ubuntu.comUB:CVE-2021-47548

HistoryMay 24, 2024 - 12:00 a.m.

CVE-2021-47548

2024-05-2400:00:00

ubuntu.com

linux

kernel

vulnerability

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

6.9 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.3%

JSON

In the Linux kernel, the following vulnerability has been resolved:
ethernet: hisilicon: hns: hns_dsaf_misc: fix a possible array overflow in
hns_dsaf_ge_srst_by_port() The if statement: if (port >= DSAF_GE_NUM)
return; limits the value of port less than DSAF_GE_NUM (i.e., 8). However,
if the value of port is 6 or 7, an array overflow could occur: port_rst_off
= dsaf_dev->mac_cb[port]->port_rst_off; because the length of
dsaf_dev->mac_cb is DSAF_MAX_PORT_NUM (i.e., 6). To fix this possible array
overflow, we first check port and if it is greater than or equal to
DSAF_MAX_PORT_NUM, the function returns.

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchlinux< anyUNKNOWN
ubuntu20.04noarchlinux< anyUNKNOWN
ubuntu18.04noarchlinux-aws< anyUNKNOWN
ubuntu20.04noarchlinux-aws< anyUNKNOWN
ubuntu18.04noarchlinux-aws-5.4< anyUNKNOWN
ubuntu16.04noarchlinux-aws-hwe< anyUNKNOWN
ubuntu20.04noarchlinux-azure< anyUNKNOWN
ubuntu14.04noarchlinux-azure< anyUNKNOWN
ubuntu16.04noarchlinux-azure< anyUNKNOWN
ubuntu18.04noarchlinux-azure-4.15< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	18.04	noarch	linux	< any	UNKNOWN
ubuntu	20.04	noarch	linux	< any	UNKNOWN
ubuntu	18.04	noarch	linux-aws	< any	UNKNOWN
ubuntu	20.04	noarch	linux-aws	< any	UNKNOWN
ubuntu	18.04	noarch	linux-aws-5.4	< any	UNKNOWN
ubuntu	16.04	noarch	linux-aws-hwe	< any	UNKNOWN
ubuntu	20.04	noarch	linux-azure	< any	UNKNOWN
ubuntu	14.04	noarch	linux-azure	< any	UNKNOWN
ubuntu	16.04	noarch	linux-azure	< any	UNKNOWN
ubuntu	18.04	noarch	linux-azure-4.15	< any	UNKNOWN

Rows per page:

1-10 of 291

References

git.kernel.org/linus/a66998e0fbf213d47d02813b9679426129d0d114 (5.16-rc2)

git.kernel.org/stable/c/22519eff7df2d88adcc2568d86046ce1e2b52803

git.kernel.org/stable/c/948968f8747650447c8f21c9fdba0e1973be040b

git.kernel.org/stable/c/99bb25cb6753beaf2c2bc37927c2ecc0ceff3f6d

git.kernel.org/stable/c/a66998e0fbf213d47d02813b9679426129d0d114

git.kernel.org/stable/c/abbd5faa0748d0aa95d5191d56ff7a17a6275bd1

git.kernel.org/stable/c/dd07f8971b81ad98cc754b179b331b57f35aa1ff

git.kernel.org/stable/c/fc7ffa7f10b9454a86369405d9814bf141b30627

launchpad.net/bugs/cve/CVE-2021-47548

nvd.nist.gov/vuln/detail/CVE-2021-47548

security-tracker.debian.org/tracker/CVE-2021-47548

www.cve.org/CVERecord?id=CVE-2021-47548

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

6.9 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.3%

JSON

Related for UB:CVE-2021-47548