CVE-2021-47164

Published: Mar 25, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix null deref accessing lag dev It could be the lag dev is null so stop processing the event. In bond_enslave() the active/backup slave being set before setting the upper dev so first event is without an upper dev. After setting the upper dev with bond_master_upper_dev_link() there is a second event and in that event we have an upper dev.

Vendor	Product	Versions
Linux	Linux	affected `7e51891a237f9ea319f53f9beb83afb0077d88e6 - < 2e4b0b95a489259f9d35a3db17023061f8f3d587` affected `7e51891a237f9ea319f53f9beb83afb0077d88e6 - < bdfd3593a8248eea6ecfcbf7b47b56b86515672d` affected `7e51891a237f9ea319f53f9beb83afb0077d88e6 - < 83026d83186bc48bb41ee4872f339b83f31dfc55`
Linux	Linux	affected `5.8` unaffected `0 - < 5.8` unaffected `5.10.42 - <= 5.10.` unaffected `5.12.9 - <= 5.12.` unaffected `5.13 - <= *`

References

https://git.kernel.org/stable/c/2e4b0b95a489259f9d35a3db17023061f8f3d587

https://git.kernel.org/stable/c/bdfd3593a8248eea6ecfcbf7b47b56b86515672d

https://git.kernel.org/stable/c/83026d83186bc48bb41ee4872f339b83f31dfc55

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-47164

Description

Affected Products

References