CVE-2021-47137

Published: Mar 25, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: net: lantiq: fix memory corruption in RX ring In a situation where memory allocation or dma mapping fails, an invalid address is programmed into the descriptor. This can lead to memory corruption. If the memory allocation fails, DMA should reuse the previous skb and mapping and drop the packet. This patch also increments rx drop counter.

Vendor	Product	Versions
Linux	Linux	affected `fe1a56420cf2ec28c8eceef672b87de0bbe1a260 - < 8bb1077448d43a871ed667520763e3b9f9b7975d` affected `fe1a56420cf2ec28c8eceef672b87de0bbe1a260 - < 5ac72351655f8b033a2935646f53b7465c903418` affected `fe1a56420cf2ec28c8eceef672b87de0bbe1a260 - < 46dd4abced3cb2c912916f4a5353e0927db0c4a2` affected `fe1a56420cf2ec28c8eceef672b87de0bbe1a260 - < c7718ee96dbc2f9c5fc3b578abdf296dd44b9c20`
Linux	Linux	affected `4.20` unaffected `0 - < 4.20` unaffected `5.4.124 - <= 5.4.` unaffected `5.10.42 - <= 5.10.` unaffected `5.12.9 - <= 5.12.*` +1 more versions

References

https://git.kernel.org/stable/c/8bb1077448d43a871ed667520763e3b9f9b7975d

https://git.kernel.org/stable/c/5ac72351655f8b033a2935646f53b7465c903418

https://git.kernel.org/stable/c/46dd4abced3cb2c912916f4a5353e0927db0c4a2

https://git.kernel.org/stable/c/c7718ee96dbc2f9c5fc3b578abdf296dd44b9c20

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-47137

Description

Affected Products

References