CVE-2021-47159
- Source
- https://cve.org/CVERecord?id=CVE-2021-47159
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-47159.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2021-47159
- Downstream
- Related
- Published
- 2024-03-25T10:15:08.330Z
- Modified
- 2026-03-10T23:51:32.565383Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
net: dsa: fix a crash if ->getssetcount() fails
If ds->ops->getssetcount() fails then it "count" is a negative error code such as -EOPNOTSUPP. Because "i" is an unsigned int, the negative error code is type promoted to a very high value and the loop will corrupt memory until the system crashes.
Fix this by checking for error codes and changing the type of "i" to just int.
- References
-
- https://git.kernel.org/stable/c/0f2cb08c57edefb0e7b5045e0e3e9980a3d3aa37
- https://git.kernel.org/stable/c/7b22466648a4f8e3e94f57ca428d1531866d1373
- https://git.kernel.org/stable/c/a269333fa5c0c8e53c92b5a28a6076a28cde3e83
- https://git.kernel.org/stable/c/caff86f85512b8e0d9830e8b8b0dfe13c68ce5b6
- https://git.kernel.org/stable/c/ce5355f140a7987011388c7e30c4f8fbe180d3e8
Affected packages
Git /
Database specific
unresolved_ranges
[
{
"events": [
{
"introduced": "4.7"
},
{
"fixed": "4.19.193"
}
]
},
{
"events": [
{
"introduced": "4.20"
},
{
"fixed": "5.4.124"
}
]
},
{
"events": [
{
"introduced": "5.5"
},
{
"fixed": "5.10.42"
}
]
},
{
"events": [
{
"introduced": "5.11"
},
{
"fixed": "5.12.9"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "5.13-rc1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "5.13-rc2"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "5.13-rc3"
}
]
}
]
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-47159.json"