In the Linux kernel, the following vulnerability has been resolved: net: lantiq: fix memory corruption in RX ring In a situation where memory allocation or dma mapping fails, an invalid address is programmed into the descriptor. This can lead to memory corruption. If the memory allocation fails, DMA should reuse the previous skb and mapping and drop the packet. This patch also increments rx drop counter.
History

Tue, 05 Nov 2024 17:15:00 +0000

Type Values Removed Values Added
First Time appeared Linux
Linux linux Kernel
Weaknesses CWE-770
CPEs cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
Metrics cvssV3_1

{'score': 6.0, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H'}

cvssV3_1

{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2024-03-25T09:07:36.778Z

Updated: 2024-12-19T07:35:56.090Z

Reserved: 2024-03-04T18:12:48.841Z

Link: CVE-2021-47137

cve-icon Vulnrichment

Updated: 2024-08-04T05:24:39.977Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-03-25T09:15:08.240

Modified: 2024-11-21T06:35:28.317

Link: CVE-2021-47137

cve-icon Redhat

Severity : Low

Publid Date: 2024-03-25T00:00:00Z

Links: CVE-2021-47137 - Bugzilla