Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2021-47286HistoryMay 21, 2024 - 3:15 p.m.
CVE-2021-47286
2024-05-2115:15:16
Debian Security Bug Tracker
security-tracker.debian.org
1
linux kernel
vulnerability
cve-2021-47286
validation
mhi bus
channel id
command completions
out of bound access
In the Linux kernel, the following vulnerability has been resolved: bus: mhi: core: Validate channel ID when processing command completions MHI reads the channel ID from the event ring element sent by the device which can be any value between 0 and 255. In order to prevent any out of bound accesses, add a check against the maximum number of channels supported by the controller and those channels not configured yet so as to skip processing of that event ring element.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | linux | < 5.14.6-1 | linux_5.14.6-1_all.deb |
| Debian | 11 | all | linux | < 5.10.70-1 | linux_5.10.70-1_all.deb |
| Debian | 999 | all | linux | < 5.14.6-1 | linux_5.14.6-1_all.deb |
| Debian | 13 | all | linux | < 5.14.6-1 | linux_5.14.6-1_all.deb |
Related
cve
cve
CVE-2021-47286
2024-05-21 15:15:16
cvelist
cvelist
ubuntucve
ubuntucve
CVE-2021-47286
2024-05-21 00:00:00
redhatcve
redhatcve
CVE-2021-47286
2024-05-23 13:31:02
vulnrichment
vulnrichment
nvd
nvd
CVE-2021-47286
2024-05-21 15:15:16