CVE-2021-47646

Published: Feb 26, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: Revert "Revert "block, bfq: honor already-setup queue merges"" A crash [1] happened to be triggered in conjunction with commit 2d52c58b9c9b ("block, bfq: honor already-setup queue merges"). The latter was then reverted by commit ebc69e897e17 ("Revert "block, bfq: honor already-setup queue merges""). Yet, the reverted commit was not the one introducing the bug. In fact, it actually triggered a UAF introduced by a different commit, and now fixed by commit d29bd41428cf ("block, bfq: reset last_bfqq_created on group change"). So, there is no point in keeping commit 2d52c58b9c9b ("block, bfq: honor already-setup queue merges") out. This commit restores it. [1] https://bugzilla.kernel.org/show_bug.cgi?id=214503

Vendor	Product	Versions
Linux	Linux	affected `aee69d78dec0ffdf82e35d57c626e80dddc314d5 - < f990f0985eda59d4f29fc83fcf300c92b1225d39` affected `aee69d78dec0ffdf82e35d57c626e80dddc314d5 - < 931aff627469a75c77b9fd3823146d0575afffd6` affected `aee69d78dec0ffdf82e35d57c626e80dddc314d5 - < cc051f497eac9d8a0d816cd4bffa3415f2724871` affected `aee69d78dec0ffdf82e35d57c626e80dddc314d5 - < 65d8a737452e88f251fe5d925371de6d606df613` affected `aee69d78dec0ffdf82e35d57c626e80dddc314d5 - < abc2129e646af7b43025d90a071f83043f1ae76c` +2 more versions
Linux	Linux	affected `4.12` unaffected `0 - < 4.12` unaffected `4.19.238 - <= 4.19.` unaffected `5.4.189 - <= 5.4.` unaffected `5.10.110 - <= 5.10.*` +4 more versions