CVE-2021-47564

Source
https://nvd.nist.gov/vuln/detail/CVE-2021-47564
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-47564.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2021-47564
Related
Published
2024-05-24T15:15:21Z
Modified
2024-09-18T03:18:53.633232Z
Summary
[none]
Details

In the Linux kernel, the following vulnerability has been resolved:

net: marvell: prestera: fix double free issue on err path

fix error path handling in presterabridgeport_join() that cases prestera driver to crash (see below).

Trace: Internal error: Oops: 96000044 [#1] SMP Modules linked in: presterapci prestera uiopdrvgenirq CPU: 1 PID: 881 Comm: ip Not tainted 5.15.0 #1 pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : presterabridgedestroy+0x2c/0xb0 [prestera] lr : presterabridgeportjoin+0x2cc/0x350 [prestera] sp : ffff800011a1b0f0 ... x2 : ffff000109ca6c80 x1 : dead000000000100 x0 : dead000000000122 Call trace: presterabridgedestroy+0x2c/0xb0 [prestera] presterabridgeportjoin+0x2cc/0x350 [prestera] presteranetdevportevent.constprop.0+0x3c4/0x450 [prestera] presteranetdeveventhandler+0xf4/0x110 [prestera] rawnotifiercallchain+0x54/0x80 callnetdevicenotifiersinfo+0x54/0xa0 _netdevupperdev_link+0x19c/0x380

References

Affected packages

Debian:11 / linux

Package

Name
linux
Purl
pkg:deb/debian/linux?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.10.84-1

Affected versions

5.*

5.10.46-4
5.10.46-5
5.10.70-1~bpo10+1
5.10.70-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / linux

Package

Name
linux
Purl
pkg:deb/debian/linux?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.15.15-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / linux

Package

Name
linux
Purl
pkg:deb/debian/linux?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.15.15-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}