Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve416baaa9-dc9f-4396-8d5f-8c081fb06d67CVE-2021-47225
HistoryMay 21, 2024 - 3:15 p.m.

CVE-2021-47225

2024-05-2115:15:11
416baaa9-dc9f-4396-8d5f-8c081fb06d67
web.nvd.nist.gov
27
linux kernel
mac80211
vulnerability
fixed
deadlock
ap
vlan handling
syzbot
dev_close()
wiphy mutex

6.6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.1%

JSON

In the Linux kernel, the following vulnerability has been resolved:

mac80211: fix deadlock in AP/VLAN handling

Syzbot reports that when you have AP_VLAN interfaces that are up
and close the AP interface they belong to, we get a deadlock. No
surprise - since we dev_close() them with the wiphy mutex held,
which goes back into the netdev notifier in cfg80211 and tries to
acquire the wiphy mutex there.

To fix this, we need to do two things:

  1. prevent changing iftype while AP_VLANs are up, we can’t
    easily fix this case since cfg80211 already calls us with
    the wiphy mutex held, but change_interface() is relatively
    rare in drivers anyway, so changing iftype isn’t used much
    (and userspace has to fall back to down/change/up anyway)
  2. pull the dev_close() loop over VLANs out of the wiphy mutex
    section in the normal stop case

Affected configurations

Vulners
Node
linuxlinux_kernelRange5.125.12.13
OR
linuxlinux_kernelRange5.13.0

CNA Affected

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/mac80211/iface.c"
    ],
    "versions": [
      {
        "version": "a05829a7222e",
        "lessThan": "8043903fcb72",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "a05829a7222e",
        "lessThan": "d5befb224edb",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/mac80211/iface.c"
    ],
    "versions": [
      {
        "version": "5.12",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "5.12",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.12.13",
        "lessThanOrEqual": "5.12.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.13",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Related

cvelist 1
vulnrichment 1
nvd 1
ubuntucve 1
redhatcve 1
debiancve 1
cvelist
cvelist
CVE-2021-47225 mac80211: fix deadlock in AP/VLAN handling
2024-05-21 14:19:30
vulnrichment
vulnrichment
CVE-2021-47225 mac80211: fix deadlock in AP/VLAN handling
2024-05-21 14:19:30
nvd
nvd
CVE-2021-47225
2024-05-21 15:15:11
ubuntucve
ubuntucve
CVE-2021-47225
2024-05-21 00:00:00
redhatcve
redhatcve
CVE-2021-47225
2024-05-23 13:59:58
debiancve
debiancve
CVE-2021-47225
2024-05-21 15:15:11

6.6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.1%

JSON
Related for CVE-2021-47225
cvelist1vulnrichment1nvd1ubuntucve1redhatcve1debiancve1