CVE-2021-47174 netfilter: nft_set_pipapo_avx2: Add irq_fpu_usable() check, fallback to non-AVX2 version

🗓️ 25 Mar 2024 09:16:25Reported by LinuxType

CVE-2021-47174 netfilter vulnerability in Linux kernel resolve

Reporter	Title	Published	Views	Family All 128
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.10-2022-002 (ALASKERNEL-5.10-2022-002)	2 May 202200:00	–	nessus
Tenable Nessus	RHEL 7 : kernel (Unpatched Vulnerability)	11 May 202400:00	–	nessus
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2021-47174	12 Aug 202500:00	–	nessus
Amazon	Important: kernel	28 Jan 202200:00	–	amazon
CNNVD	Linux kernel 安全漏洞	25 Mar 202400:00	–	cnnvd
CVE	CVE-2021-47174	25 Mar 202409:16	–	cve
Debian CVE	CVE-2021-47174	25 Mar 202409:16	–	debiancve
NVD	CVE-2021-47174	25 Mar 202410:15	–	nvd
OpenVAS	openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2024:1489-1)	20 Aug 202400:00	–	openvas
OpenVAS	SUSE: Security Advisory (SUSE-SU-2024:1489-1)	13 Feb 202500:00	–	openvas

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/netfilter/nft_set_pipapo.c",
      "net/netfilter/nft_set_pipapo.h",
      "net/netfilter/nft_set_pipapo_avx2.c"
    ],
    "versions": [
      {
        "version": "7400b063969bdca4a06cd97f1294d765c8eecbe1",
        "lessThan": "b1f45a26bd322525c14edd9504f6d46dfad679a4",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "7400b063969bdca4a06cd97f1294d765c8eecbe1",
        "lessThan": "727a2b4fc951ee69847d4904d98961856ea9fbe6",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "7400b063969bdca4a06cd97f1294d765c8eecbe1",
        "lessThan": "f0b3d338064e1fe7531f0d2977e35f3b334abfb4",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/netfilter/nft_set_pipapo.c",
      "net/netfilter/nft_set_pipapo.h",
      "net/netfilter/nft_set_pipapo_avx2.c"
    ],
    "versions": [
      {
        "version": "5.7",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "5.7",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.10.42",
        "lessThanOrEqual": "5.10.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.12.9",
        "lessThanOrEqual": "5.12.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.13",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/b1f45a26bd322525c14edd9504f6d46dfad679a4
git	www.git.kernel.org/stable/c/f0b3d338064e1fe7531f0d2977e35f3b334abfb4
git	www.git.kernel.org/stable/c/727a2b4fc951ee69847d4904d98961856ea9fbe6

11 May 2026 13:49Current

6.7Medium risk

Vulners AI Score6.7

EPSS0.00232