Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Linux Distros Unpatched Vulnerability : CVE-2021-47099

🗓️ 09 Aug 2025 00:00:00Reported by TenableType 
nessus
 nessus🔗 www.tenable.com👁 2 Views

CVE-2021-47099: kernel veth GRO cloning risk; without XDP, shared skbs may enter GRO; patched.

Related
Refs
Code
ReporterTitlePublishedViews
Family
Circl		CVE-2021-47099
4 Mar 202419:26
circl
CNNVD		Linux kernel security vulnerabilities
4 Mar 202400:00
cnnvd
CVE		CVE-2021-47099
4 Mar 202418:10
cve
Cvelist		CVE-2021-47099 veth: ensure skb entering GRO are not cloned.
4 Mar 202418:10
cvelist
Debian CVE		CVE-2021-47099
4 Mar 202418:10
debiancve
NVD		CVE-2021-47099
4 Mar 202418:15
nvd
OpenVAS		openSUSE Security Advisory (SUSE-SU-2024:1322-1)
19 Apr 202400:00
openvas
OpenVAS		openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2024:1320-1)
19 Apr 202400:00
openvas
OpenVAS		openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2024:1321-1)
19 Apr 202400:00
openvas
OpenVAS		openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2024:1332-2)
23 Apr 202400:00
openvas
Rows per page
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(247066);
  script_version("1.1");
  script_set_attribute(attribute:"plugin_modification_date", value:"2025/08/09");

  script_cve_id("CVE-2021-47099");

  script_name(english:"Linux Distros Unpatched Vulnerability : CVE-2021-47099");

  script_set_attribute(attribute:"synopsis", value:
"The Linux/Unix host has one or more packages installed with a vulnerability that the vendor indicates will not be
patched.");
  script_set_attribute(attribute:"description", value:
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied
patch available.

  - In the Linux kernel, the following vulnerability has been resolved: veth: ensure skb entering GRO are not
    cloned. After commit d3256efd8e8b (veth: allow enabling NAPI even without XDP), if GRO is enabled on a
    veth device and TSO is disabled on the peer device, TCP skbs will go through the NAPI callback. If there
    is no XDP program attached, the veth code does not perform any share check, and shared/cloned skbs could
    enter the GRO engine. Ignat reported a BUG triggered later-on due to the above condition: [ 53.970529][
    C1] kernel BUG at net/core/skbuff.c:3574! [ 53.981755][ C1] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
    PTI [ 53.982634][ C1] CPU: 1 PID: 19 Comm: ksoftirqd/1 Not tainted 5.16.0-rc5+ #25 [ 53.982634][ C1]
    Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 0.0.0 02/06/2015 [ 53.982634][ C1] RIP:
    0010:skb_shift+0x13ef/0x23b0 [ 53.982634][ C1] Code: ea 03 0f b6 04 02 48 89 fa 83 e2 07 38 d0 7f 08 84 c0
    0f 85 41 0c 00 00 41 80 7f 02 00 4d 8d b5 d0 00 00 00 0f 85 74 f5 ff ff <0f> 0b 4d 8d 77 20 be 04 00 00 00
    4c 89 44 24 78 4c 89 f7 4c 89 8c [ 53.982634][ C1] RSP: 0018:ffff8881008f7008 EFLAGS: 00010246 [
    53.982634][ C1] RAX: 0000000000000000 RBX: ffff8881180b4c80 RCX: 0000000000000000 [ 53.982634][ C1] RDX:
    0000000000000002 RSI: ffff8881180b4d3c RDI: ffff88810bc9cac2 [ 53.982634][ C1] RBP: ffff8881008f70b8 R08:
    ffff8881180b4cf4 R09: ffff8881180b4cf0 [ 53.982634][ C1] R10: ffffed1022999e5c R11: 0000000000000002 R12:
    0000000000000590 [ 53.982634][ C1] R13: ffff88810f940c80 R14: ffff88810f940d50 R15: ffff88810bc9cac0 [
    53.982634][ C1] FS: 0000000000000000(0000) GS:ffff888235880000(0000) knlGS:0000000000000000 [ 53.982634][
    C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 53.982634][ C1] CR2: 00007ff5f9b86680 CR3:
    0000000108ce8004 CR4: 0000000000170ee0 [ 53.982634][ C1] Call Trace: [ 53.982634][ C1] <TASK> [
    53.982634][ C1] tcp_sacktag_walk+0xaba/0x18e0 [ 53.982634][ C1] tcp_sacktag_write_queue+0xe7b/0x3460 [
    53.982634][ C1] tcp_ack+0x2666/0x54b0 [ 53.982634][ C1] tcp_rcv_established+0x4d9/0x20f0 [ 53.982634][ C1]
    tcp_v4_do_rcv+0x551/0x810 [ 53.982634][ C1] tcp_v4_rcv+0x22ed/0x2ed0 [ 53.982634][ C1]
    ip_protocol_deliver_rcu+0x96/0xaf0 [ 53.982634][ C1] ip_local_deliver_finish+0x1e0/0x2f0 [ 53.982634][ C1]
    ip_sublist_rcv_finish+0x211/0x440 [ 53.982634][ C1] ip_list_rcv_finish.constprop.0+0x424/0x660 [
    53.982634][ C1] ip_list_rcv+0x2c8/0x410 [ 53.982634][ C1] __netif_receive_skb_list_core+0x65c/0x910 [
    53.982634][ C1] netif_receive_skb_list_internal+0x5f9/0xcb0 [ 53.982634][ C1]
    napi_complete_done+0x188/0x6e0 [ 53.982634][ C1] gro_cell_poll+0x10c/0x1d0 [ 53.982634][ C1]
    __napi_poll+0xa1/0x530 [ 53.982634][ C1] net_rx_action+0x567/0x1270 [ 53.982634][ C1]
    __do_softirq+0x28a/0x9ba [ 53.982634][ C1] run_ksoftirqd+0x32/0x60 [ 53.982634][ C1]
    smpboot_thread_fn+0x559/0x8c0 [ 53.982634][ C1] kthread+0x3b9/0x490 [ 53.982634][ C1]
    ret_from_fork+0x22/0x30 [ 53.982634][ C1] </TASK> Address the issue by skipping the GRO stage for shared
    or cloned skbs. To reduce the chance of OoO, try to unclone the skbs before giving up. v1 -> v2: - use
    avoid skb_copy and fallback to netif_receive_skb - Eric (CVE-2021-47099)

Note that Nessus relies on the presence of the package as reported by the vendor.");
  script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/CVE-2021-47099");
  script_set_attribute(attribute:"solution", value:
"There is no known solution at this time.");
  script_set_attribute(attribute:"agent", value:"unix");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:N/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2021-47099");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_set_attribute(attribute:"vendor_unpatched", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2022/11/08");
  script_set_attribute(attribute:"plugin_publication_date", value:"2025/08/09");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:16.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:18.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:20.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:22.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-allwinner-5.19");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-aws-5.0");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-aws-5.11");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-aws-5.13");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-aws-5.19");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-aws-5.3");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-aws-5.8");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-aws-6.2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-azure");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-azure-5.11");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-azure-5.13");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-azure-5.19");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-azure-5.3");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-azure-5.8");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-azure-6.2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-azure-edge");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-azure-fde");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-azure-fde-5.19");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-azure-fde-6.2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-gcp");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-gcp-5.11");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-gcp-5.13");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-gcp-5.19");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-gcp-5.3");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-gcp-5.8");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-gcp-6.2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-gke");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-gke-4.15");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-gke-5.15");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-gke-5.4");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-gkeop-5.4");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-hwe");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-hwe-5.11");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-hwe-5.13");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-hwe-5.19");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-hwe-5.8");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-hwe-6.2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-hwe-edge");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-intel-5.13");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-lowlatency-hwe-5.19");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-lowlatency-hwe-6.2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-nvidia-6.2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-oem");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-oem-5.10");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-oem-5.13");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-oem-5.14");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-oem-5.17");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-oem-5.6");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-oem-6.0");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-oem-6.1");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-oracle-5.0");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-oracle-5.11");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-oracle-5.13");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-oracle-5.3");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-oracle-5.8");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-raspi2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-riscv");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-riscv-5.11");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-riscv-5.19");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-riscv-5.8");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-starfive-5.19");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-starfive-6.2");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Misc.");

  script_copyright(english:"This script is Copyright (C) 2025 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info2.nasl", "set_linux_os_id.nasl");
  script_require_keys("Host/cpu", "Host/local_checks_enabled", "global_settings/vendor_unpatched", "Host/OS/identifier");
  script_require_ports("Host/OS/Ubuntu Linux-16.04", "Host/OS/Ubuntu Linux-18.04", "Host/OS/Ubuntu Linux-20.04", "Host/OS/Ubuntu Linux-22.04");

  exit(0);
}

if (!get_kb_item("global_settings/vendor_unpatched")) exit(0, "Unpatched Vulnerabilities Detection not active.");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (empty_or_null(get_one_kb_item("Host/Debian/dpkg-l"))) audit(AUDIT_PACKAGE_LIST_MISSING);

include('linux_unpatched.inc');

var distro_constraints_array = {
  "Ubuntu Linux-16.04": {
    "package_manager": "dpkg-l",
    "constraints": [
      {
        "release": "16.04",
        "pkgs": [
          {"reference": "linux-hwe-edge"}
        ]
      }
    ]
  },
  "Ubuntu Linux-18.04": {
    "package_manager": "dpkg-l",
    "constraints": [
      {
        "release": "18.04",
        "pkgs": [
          {"reference": "linux-aws-5.0"},
          {"reference": "linux-aws-5.3"},
          {"reference": "linux-azure-5.3"},
          {"reference": "linux-azure-cloud-tools-4.15.0"},
          {"reference": "linux-azure-edge"},
          {"reference": "linux-azure-headers-4.15.0"},
          {"reference": "linux-azure-tools-4.15.0"},
          {"reference": "linux-cloud-tools-4.15.0"},
          {"reference": "linux-gcp-5.3"},
          {"reference": "linux-gcp-headers-4.15.0"},
          {"reference": "linux-gcp-tools-4.15.0"},
          {"reference": "linux-gke-4.15"},
          {"reference": "linux-gke-5.4"},
          {"reference": "linux-gkeop-5.4"},
          {"reference": "linux-headers-4.15.0"},
          {"reference": "linux-hwe"},
          {"reference": "linux-hwe-edge"},
          {"reference": "linux-image-4.15.0"},
          {"reference": "linux-image-unsigned-4.15.0"},
          {"reference": "linux-modules-4.15.0"},
          {"reference": "linux-modules-extra-4.15.0"},
          {"reference": "linux-oem-headers-4.15.0"},
          {"reference": "linux-oem-tools-4.15.0"},
          {"reference": "linux-oracle-5.0"},
          {"reference": "linux-oracle-5.3"},
          {"reference": "linux-tools-4.15.0"},
          {"reference": "linux-udebs-azure"},
          {"reference": "linux-udebs-oem"}
        ]
      }
    ]
  },
  "Ubuntu Linux-20.04": {
    "package_manager": "dpkg-l",
    "constraints": [
      {
        "release": "20.04",
        "pkgs": [
          {"reference": "linux-aws-5.11"},
          {"reference": "linux-aws-5.13"},
          {"reference": "linux-aws-5.8"},
          {"reference": "linux-azure-5.11"},
          {"reference": "linux-azure-5.13"},
          {"reference": "linux-azure-5.8"},
          {"reference": "linux-azure-fde"},
          {"reference": "linux-buildinfo-5.4.0"},
          {"reference": "linux-buildinfo-5.6.0"},
          {"reference": "linux-cloud-tools-5.4.0"},
          {"reference": "linux-cloud-tools-5.6.0"},
          {"reference": "linux-gcp-5.11"},
          {"reference": "linux-gcp-5.13"},
          {"reference": "linux-gcp-5.8"},
          {"reference": "linux-gke"},
          {"reference": "linux-gke-5.15"},
          {"reference": "linux-headers-5.4.0"},
          {"reference": "linux-headers-5.6.0"},
          {"reference": "linux-hwe-5.11"},
          {"reference": "linux-hwe-5.13"},
          {"reference": "linux-hwe-5.8"},
          {"reference": "linux-image-5.4.0"},
          {"reference": "linux-image-unsigned-5.6.0"},
          {"reference": "linux-intel-5.13"},
          {"reference": "linux-libc-dev"},
          {"reference": "linux-modules-5.4.0"},
          {"reference": "linux-modules-5.6.0"},
          {"reference": "linux-modules-extra-5.4.0"},
          {"reference": "linux-modules-extra-5.6.0"},
          {"reference": "linux-oem-5.10"},
          {"reference": "linux-oem-5.13"},
          {"reference": "linux-oem-5.14"},
          {"reference": "linux-oem-5.6-headers-5.6.0"},
          {"reference": "linux-oem-5.6-tools-5.6.0"},
          {"reference": "linux-oem-5.6-tools-common"},
          {"reference": "linux-oem-5.6-tools-host"},
          {"reference": "linux-oracle-5.11"},
          {"reference": "linux-oracle-5.13"},
          {"reference": "linux-oracle-5.8"},
          {"reference": "linux-raspi2"},
          {"reference": "linux-riscv-5.11"},
          {"reference": "linux-riscv-5.8"},
          {"reference": "linux-riscv-headers-5.4.0"},
          {"reference": "linux-riscv-tools-5.4.0"},
          {"reference": "linux-tools-5.4.0"},
          {"reference": "linux-tools-5.6.0"},
          {"reference": "linux-udebs-generic"},
          {"reference": "linux-udebs-oem"}
        ]
      }
    ]
  },
  "Ubuntu Linux-22.04": {
    "package_manager": "dpkg-l",
    "constraints": [
      {
        "release": "22.04",
        "pkgs": [
          {"reference": "linux-allwinner-5.19"},
          {"reference": "linux-aws-5.19"},
          {"reference": "linux-aws-6.2"},
          {"reference": "linux-azure-5.19"},
          {"reference": "linux-azure-6.2"},
          {"reference": "linux-azure-fde-5.19"},
          {"reference": "linux-azure-fde-6.2"},
          {"reference": "linux-buildinfo-5.15.0"},
          {"reference": "linux-buildinfo-5.17.0"},
          {"reference": "linux-cloud-tools-5.15.0"},
          {"reference": "linux-cloud-tools-5.17.0"},
          {"reference": "linux-gcp-5.19"},
          {"reference": "linux-gcp-6.2"},
          {"reference": "linux-headers-5.15.0"},
          {"reference": "linux-headers-5.17.0"},
          {"reference": "linux-hwe-5.19"},
          {"reference": "linux-hwe-6.2"},
          {"reference": "linux-image-5.15.0"},
          {"reference": "linux-image-unsigned-5.17.0"},
          {"reference": "linux-lowlatency-hwe-5.19"},
          {"reference": "linux-lowlatency-hwe-6.2"},
          {"reference": "linux-modules-5.15.0"},
          {"reference": "linux-modules-5.17.0"},
          {"reference": "linux-modules-extra-5.15.0"},
          {"reference": "linux-modules-extra-5.17.0"},
          {"reference": "linux-nvidia-6.2"},
          {"reference": "linux-oem-5.17-headers-5.17.0"},
          {"reference": "linux-oem-5.17-tools-5.17.0"},
          {"reference": "linux-oem-5.17-tools-host"},
          {"reference": "linux-oem-6.0"},
          {"reference": "linux-oem-6.1"},
          {"reference": "linux-riscv-5.19"},
          {"reference": "linux-riscv-headers-5.15.0"},
          {"reference": "linux-riscv-tools-5.15.0"},
          {"reference": "linux-starfive-5.19"},
          {"reference": "linux-starfive-6.2"},
          {"reference": "linux-tools-5.15.0"},
          {"reference": "linux-tools-5.17.0"}
        ]
      }
    ]
  }
};

var distro_constraints_values = linux_unpatched::get_distro_constraints(distro_constraints_arr:distro_constraints_array);
if (empty_or_null(distro_constraints_values)) audit(AUDIT_HOST_NOT, 'affected');
var report = linux_unpatched::check_unpatched_constraints(distro_constraints_values:distro_constraints_values);

if (!empty_or_null(report))
{
  security_report_v4(
      port       : 0,
      severity   : SECURITY_WARNING,
      extra      : report
  );
  exit(0);
}
else
{
  audit(AUDIT_HOST_NOT, 'affected');
}

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
09 Aug 2025 00:00Current
5.5Medium risk
Vulners AI Score5.5
CVSS 3.16
EPSS0.00013
SSVC
linux kernel vulnerabilitygeneric receive offloadshared buffers riskprogram absentpatch applied
2