Wind River Support Network

Not to be fixed

LIN1021-7575 : Security Advisory - linux - CVE-2021-47055

Created: Mar 2, 2024    Updated: Apr 5, 2024
Resolved Date: Apr 5, 2024
Found In Version:
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Kernel


In the Linux kernel, the following vulnerability has been resolved:

mtd: require write permissions for locking and badblock ioctls

MEMLOCK, MEMUNLOCK and OTPLOCK modify protection bits. Thus require
write permission. Depending on the hardware MEMLOCK might even be
write-once, e.g. for SPI-NOR flashes with their WP# tied to GND. OTPLOCK
is always write-once.

MEMSETBADBLOCK modifies the bad block table.

CREATE(Triage):(User=admin) CVE-2021-47055 (
Live chat