Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2021-47001HistoryFeb 28, 2024 - 9:15 a.m.
CVE-2021-47001
2024-02-2809:15:38
Debian Security Bug Tracker
security-tracker.debian.org
3
linux kernel
xprtrdma
vulnerability fix
cwnd update
reconnect
rpc calls
rnr
kasan
disconnect injection
ib_post_recv
In the Linux kernel, the following vulnerability has been resolved: xprtrdma: Fix cwnd update ordering After a reconnect, the reply handler is opening the cwnd (and thus enabling more RPC Calls to be sent) /before/ rpcrdma_post_recvs() can post enough Receive WRs to receive their replies. This causes an RNR and the new connection is lost immediately. The race is most clearly exposed when KASAN and disconnect injection are enabled. This slows down rpcrdma_rep_create() enough to allow the send side to post a bunch of RPC Calls before the Receive completion handler can invoke ib_post_recv().
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | linux | < 5.10.38-1 | linux_5.10.38-1_all.deb |
| Debian | 11 | all | linux | < 5.10.38-1 | linux_5.10.38-1_all.deb |
| Debian | 999 | all | linux | < 5.10.38-1 | linux_5.10.38-1_all.deb |
| Debian | 13 | all | linux | < 5.10.38-1 | linux_5.10.38-1_all.deb |
Related
cve
cve
CVE-2021-47001
2024-02-28 09:15:38
redhatcve
redhatcve
CVE-2021-47001
2024-02-29 08:02:01
prion
prion
Design/Logic Flaw
2024-02-28 09:15:00
cvelist
cvelist
CVE-2021-47001 xprtrdma: Fix cwnd update ordering
2024-02-28 08:13:23
vulnrichment
vulnrichment
CVE-2021-47001 xprtrdma: Fix cwnd update ordering
2024-02-28 08:13:23
ubuntucve
ubuntucve
CVE-2021-47001
2024-02-28 00:00:00
nvd
nvd
CVE-2021-47001
2024-02-28 09:15:38
nessus
nessus
Amazon Linux 2 : kernel (ALASKERNEL-5.10-2022-002)
2022-05-02 00:00:00
RHEL 6 : kernel (Unpatched Vulnerability)
2024-05-11 00:00:00
RHEL 7 : kernel (Unpatched Vulnerability)
2024-05-11 00:00:00
6.9 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
15.7%
Related for DEBIANCVE:CVE-2021-47001