Wind River Support Network


LIN1021-7863 : Security Advisory - linux - CVE-2021-47159

Created: Mar 25, 2024    Updated: May 23, 2024
Resolved Date: May 22, 2024
Found In Version:
Fix Version:
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Kernel


In the Linux kernel, the following vulnerability has been resolved:

net: dsa: fix a crash if ->get_sset_count() fails

If ds->ops->get_sset_count() fails then it "count" is a negative error
code such as -EOPNOTSUPP.  Because "i" is an unsigned int, the negative
error code is type promoted to a very high value and the loop will
corrupt memory until the system crashes.

Fix this by checking for error codes and changing the type of "i" to
just int.

CREATE(Triage):(User=admin) CVE-2021-47159 (


Live chat