CVE-2021-47548
Published: May 24, 2024
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: ethernet: hisilicon: hns: hns_dsaf_misc: fix a possible array overflow in hns_dsaf_ge_srst_by_port() The if statement: if (port >= DSAF_GE_NUM) return; limits the value of port less than DSAF_GE_NUM (i.e., 8). However, if the value of port is 6 or 7, an array overflow could occur: port_rst_off = dsaf_dev->mac_cb[port]->port_rst_off; because the length of dsaf_dev->mac_cb is DSAF_MAX_PORT_NUM (i.e., 6). To fix this possible array overflow, we first check port and if it is greater than or equal to DSAF_MAX_PORT_NUM, the function returns.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 850bfa3b78ea8849fef78ed74f5f2ccf947db0ca - < 948968f8747650447c8f21c9fdba0e1973be040baffected 850bfa3b78ea8849fef78ed74f5f2ccf947db0ca - < abbd5faa0748d0aa95d5191d56ff7a17a6275bd1affected 850bfa3b78ea8849fef78ed74f5f2ccf947db0ca - < dd07f8971b81ad98cc754b179b331b57f35aa1ffaffected 850bfa3b78ea8849fef78ed74f5f2ccf947db0ca - < 99bb25cb6753beaf2c2bc37927c2ecc0ceff3f6daffected 850bfa3b78ea8849fef78ed74f5f2ccf947db0ca - < 22519eff7df2d88adcc2568d86046ce1e2b52803+2 more versions |
Linux | Linux | affected 4.7unaffected 0 - < 4.7unaffected 4.9.292 - <= 4.9.*unaffected 4.14.257 - <= 4.14.*unaffected 4.19.220 - <= 4.19.*+4 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now