Lucene search
416baaa9-dc9f-4396-8d5f-8c081fb06d67CVE-2021-47109HistoryMar 15, 2024 - 9:15 p.m.
CVE-2021-47109
2024-03-1521:15:06
416baaa9-dc9f-4396-8d5f-8c081fb06d67
web.nvd.nist.gov
36
cve-2021-47109
linux kernel
vulnerability
neighbour
nud_noarp
ipv6
neighbour table
commit 58956317c8de
garbage collection
nvd
In the Linux kernel, the following vulnerability has been resolved:
neighbour: allow NUD_NOARP entries to be forced GCed
IFF_POINTOPOINT interfaces use NUD_NOARP entries for IPv6. It’s possible to
fill up the neighbour table with enough entries that it will overflow for
valid connections after that.
This behaviour is more prevalent after commit 58956317c8de (“neighbor:
Improve garbage collection”) is applied, as it prevents removal from
entries that are not NUD_FAILED, unless they are more than 5s old.
Affected configurations
Node
linuxlinux_kernelRange5.0–5.4.125
ORlinuxlinux_kernelRange5.5.0–5.10.43
ORlinuxlinux_kernelRange5.11.0–5.12.10
ORlinuxlinux_kernelRange5.13.0≥
| Vendor | Product | Version | CPE |
|---|---|---|---|
| linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "unaffected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"net/core/neighbour.c"
],
"versions": [
{
"version": "58956317c8de",
"lessThan": "d99029e6aab6",
"status": "affected",
"versionType": "git"
},
{
"version": "58956317c8de",
"lessThan": "d17d47da59f7",
"status": "affected",
"versionType": "git"
},
{
"version": "58956317c8de",
"lessThan": "ddf088d7aaaa",
"status": "affected",
"versionType": "git"
},
{
"version": "58956317c8de",
"lessThan": "7a6b1ab7475f",
"status": "affected",
"versionType": "git"
}
]
},
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "affected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"net/core/neighbour.c"
],
"versions": [
{
"version": "5.0",
"status": "affected"
},
{
"version": "0",
"lessThan": "5.0",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.4.125",
"lessThanOrEqual": "5.4.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.10.43",
"lessThanOrEqual": "5.10.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.12.10",
"lessThanOrEqual": "5.12.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.13",
"lessThanOrEqual": "*",
"status": "unaffected",
"versionType": "original_commit_for_fix"
}
]
}
]Related
redhatcve
redhatcve
CVE-2021-47109
2024-03-16 19:07:13
vulnrichment
vulnrichment
CVE-2021-47109 neighbour: allow NUD_NOARP entries to be forced GCed
2024-03-15 20:14:18
nvd
nvd
CVE-2021-47109
2024-03-15 21:15:06
ubuntucve
ubuntucve
CVE-2021-47109
2024-03-15 00:00:00
cvelist
cvelist
CVE-2021-47109 neighbour: allow NUD_NOARP entries to be forced GCed
2024-03-15 20:14:18
debiancve
debiancve
CVE-2021-47109
2024-03-15 21:15:06
nessus
nessus
SUSE SLES15 Security Update : kernel (SUSE-SU-2024:1454-1)
2024-04-29 00:00:00
RHEL 6 : kernel (Unpatched Vulnerability)
2024-05-11 00:00:00
RHEL 7 : kernel (Unpatched Vulnerability)
2024-05-11 00:00:00