Wind River Support Network

HomeDefectsLIN1021-7846
Fixed

LIN1021-7846 : Security Advisory - linux - CVE-2021-47138

Created: Mar 25, 2024    Updated: May 17, 2024
Resolved Date: May 17, 2024
Found In Version: 10.21.20.1
Fix Version: 10.21.20.21
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Kernel

Description

In the Linux kernel, the following vulnerability has been resolved:

cxgb4: avoid accessing registers when clearing filters

Hardware register having the server TID base can contain
invalid values when adapter is in bad state (for example,
due to AER fatal error). Reading these invalid values in the
register can lead to out-of-bound memory access. So, fix
by using the saved server TID base when clearing filters.

CREATE(Triage):(User=admin) CVE-2021-47138 (https://nvd.nist.gov/vuln/detail/CVE-2021-47138)

CVEs


Live chat
Online