CVE-2021-46940

Published: Feb 27, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: tools/power turbostat: Fix offset overflow issue in index converting The idx_to_offset() function returns type int (32-bit signed), but MSR_PKG_ENERGY_STAT is u32 and would be interpreted as a negative number. The end result is that it hits the if (offset < 0) check in update_msr_sum() which prevents the timer callback from updating the stat in the background when long durations are used. The similar issue exists in offset_to_idx() and update_msr_sum(). Fix this issue by converting the 'int' to 'off_t' accordingly.

Vendor	Product	Versions
Linux	Linux	affected `9972d5d84d76982606806b2ce887f70c2f8ba60a - < ea6803ff2cd1a2d7d880256bf562172b708a76ff` affected `9972d5d84d76982606806b2ce887f70c2f8ba60a - < dbdf22fc825fdb1d97f23230064e0f9819471628` affected `9972d5d84d76982606806b2ce887f70c2f8ba60a - < 337b1546cde87fb8588ddaedf0201b769baa572a` affected `9972d5d84d76982606806b2ce887f70c2f8ba60a - < 13a779de4175df602366d129e41782ad7168cef0`
Linux	Linux	affected `5.10` unaffected `0 - < 5.10` unaffected `5.10.36 - <= 5.10.` unaffected `5.11.20 - <= 5.11.` unaffected `5.12.3 - <= 5.12.*` +1 more versions

References

https://git.kernel.org/stable/c/ea6803ff2cd1a2d7d880256bf562172b708a76ff

https://git.kernel.org/stable/c/dbdf22fc825fdb1d97f23230064e0f9819471628

https://git.kernel.org/stable/c/337b1546cde87fb8588ddaedf0201b769baa572a

https://git.kernel.org/stable/c/13a779de4175df602366d129e41782ad7168cef0

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-46940

Description

Affected Products

References