CVE-2021-47289

Published: May 21, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: ACPI: fix NULL pointer dereference Commit 71f642833284 ("ACPI: utils: Fix reference counting in for_each_acpi_dev_match()") started doing "acpi_dev_put()" on a pointer that was possibly NULL. That fails miserably, because that helper inline function is not set up to handle that case. Just make acpi_dev_put() silently accept a NULL pointer, rather than calling down to put_device() with an invalid offset off that NULL pointer.

Vendor	Product	Versions
Linux	Linux	affected `fe066621c7966fe47fa17c6be6fd81adb3c0509f - < 38f54217b423c0101d03a00feec6fb8ec608b12e` affected `fe066621c7966fe47fa17c6be6fd81adb3c0509f - < cae3fa3d8165761f3000f523b11cfa1cd35206bc` affected `fe066621c7966fe47fa17c6be6fd81adb3c0509f - < ccf23a0888077a25a0793a746c3941db2a7562e4` affected `fe066621c7966fe47fa17c6be6fd81adb3c0509f - < fc68f42aa737dc15e7665a4101d4168aadb8e4c4`
Linux	Linux	affected `5.2` unaffected `0 - < 5.2` unaffected `5.4.139 - <= 5.4.` unaffected `5.10.57 - <= 5.10.` unaffected `5.13.6 - <= 5.13.*` +1 more versions

References

https://git.kernel.org/stable/c/38f54217b423c0101d03a00feec6fb8ec608b12e

https://git.kernel.org/stable/c/cae3fa3d8165761f3000f523b11cfa1cd35206bc

https://git.kernel.org/stable/c/ccf23a0888077a25a0793a746c3941db2a7562e4

https://git.kernel.org/stable/c/fc68f42aa737dc15e7665a4101d4168aadb8e4c4

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-47289

Description

Affected Products

References