CVE-2021-47136

🗓️ 25 Mar 2024 09:07:36Reported by LinuxType

In the Linux kernel, a vulnerability has been resolved related to net skb extension allocation leading to use of uninitialized memory

Reporter	Title	Published	Views	Family All 131
ATTACKERKB	CVE-2021-47136	25 Mar 202409:15	–	attackerkb
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.10-2022-002 (ALASKERNEL-5.10-2022-002)	2 May 202200:00	–	nessus
Tenable Nessus	RHEL 6 : kernel (Unpatched Vulnerability)	11 May 202400:00	–	nessus
Tenable Nessus	RHEL 7 : kernel (Unpatched Vulnerability)	11 May 202400:00	–	nessus
Tenable Nessus	TencentOS Server 4: kernel (TSSA-2024:0958)	16 Jun 202500:00	–	nessus
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2021-47136	5 Mar 202500:00	–	nessus
Amazon	Important: kernel	28 Jan 202200:00	–	amazon
CNNVD	Linux kernel 安全漏洞	25 Mar 202400:00	–	cnnvd
Cvelist	CVE-2021-47136 net: zero-initialize tc skb extension on allocation	25 Mar 202409:07	–	cvelist
Debian CVE	CVE-2021-47136	25 Mar 202409:07	–	debiancve

NVD

Vulners

CNA

Node

linux linux_kernelRange5.9–5.10.42

linux linux_kernelRange5.11–5.12.9

linux linux_kernelMatch5.13rc1

linux linux_kernelMatch5.13rc2

linux linux_kernelMatch5.13rc3

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/net/ethernet/mellanox/mlx5/core/en/rep/tc.c",
      "drivers/net/ethernet/mellanox/mlx5/core/en_tc.c",
      "include/net/pkt_cls.h",
      "net/sched/cls_api.c"
    ],
    "versions": [
      {
        "version": "038ebb1a713d114d54dbf14868a73181c0c92758",
        "lessThan": "ac493452e937b8939eaf2d24cac51a4804b6c20e",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "038ebb1a713d114d54dbf14868a73181c0c92758",
        "lessThan": "86ab133b695ed7ba1f8786b12f4ca43137ad8c18",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "038ebb1a713d114d54dbf14868a73181c0c92758",
        "lessThan": "9453d45ecb6c2199d72e73c993e9d98677a2801b",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "7154bda4cfc1f41b339121475d2b0234141f3492",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "5.7.15",
        "lessThan": "5.8",
        "status": "affected",
        "versionType": "semver"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/net/ethernet/mellanox/mlx5/core/en/rep/tc.c",
      "drivers/net/ethernet/mellanox/mlx5/core/en_tc.c",
      "include/net/pkt_cls.h",
      "net/sched/cls_api.c"
    ],
    "versions": [
      {
        "version": "5.9",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "5.9",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.10.42",
        "lessThanOrEqual": "5.10.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.12.9",
        "lessThanOrEqual": "5.12.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.13",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/9453d45ecb6c2199d72e73c993e9d98677a2801b
git	www.git.kernel.org/stable/c/86ab133b695ed7ba1f8786b12f4ca43137ad8c18
git	www.git.kernel.org/stable/c/ac493452e937b8939eaf2d24cac51a4804b6c20e

23 May 2026 15:19Current

6.4Medium risk

Vulners AI Score6.4

CVSS 3.15.5

EPSS0.00015

SSVC

CWE-908