CVE-2021-47218

Published: Apr 10, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: selinux: fix NULL-pointer dereference when hashtab allocation fails When the hash table slot array allocation fails in hashtab_init(), h->size is left initialized with a non-zero value, but the h->htable pointer is NULL. This may then cause a NULL pointer dereference, since the policydb code relies on the assumption that even after a failed hashtab_init(), hashtab_map() and hashtab_destroy() can be safely called on it. Yet, these detect an empty hashtab only by looking at the size. Fix this by making sure that hashtab_init() always leaves behind a valid empty hashtab when the allocation fails.

Vendor	Product	Versions
Linux	Linux	affected `03414a49ad5f3c56988c36d2070e402ffa17feaf - < b17dd53cac769dd13031b0ca34f90cc65e523fab` affected `03414a49ad5f3c56988c36d2070e402ffa17feaf - < 83c8ab8503adf56bf68dafc7a382f4946c87da79` affected `03414a49ad5f3c56988c36d2070e402ffa17feaf - < dc27f3c5d10c58069672215787a96b4fae01818b`
Linux	Linux	affected `5.8` unaffected `0 - < 5.8` unaffected `5.10.82 - <= 5.10.` unaffected `5.15.5 - <= 5.15.` unaffected `5.16 - <= *`

References

https://git.kernel.org/stable/c/b17dd53cac769dd13031b0ca34f90cc65e523fab

https://git.kernel.org/stable/c/83c8ab8503adf56bf68dafc7a382f4946c87da79

https://git.kernel.org/stable/c/dc27f3c5d10c58069672215787a96b4fae01818b

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-47218

Description

Affected Products

References