CVE-2021-47006

2024-02-2800:00:00

ubuntu.com

linux kernel

arm

vulnerability

hw_breakpoint

overflow_handler

commit

perf_event_alloc

enable_single_step

6.6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

13.1%

JSON

In the Linux kernel, the following vulnerability has been resolved: ARM:
9064/1: hw_breakpoint: Do not directly check the event’s overflow_handler
hook The commit 1879445dfa7b (“perf/core: Set event’s default
::overflow_handler()”) set a default event->overflow_handler in
perf_event_alloc(), and replace the check event->overflow_handler with
is_default_overflow_handler(), but one is missing. Currently, the
bp->overflow_handler can not be NULL. As a result, enable_single_step() is
always not invoked. Comments from Zhen Lei:
https://patchwork.kernel.org/project/linux-arm-kernel/patch/[email protected]/

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchlinux< anyUNKNOWN
ubuntu20.04noarchlinux< 5.4.0-80.90UNKNOWN
ubuntu18.04noarchlinux-aws< anyUNKNOWN
ubuntu20.04noarchlinux-aws< 5.4.0-1054.57UNKNOWN
ubuntu18.04noarchlinux-aws-5.4< anyUNKNOWN
ubuntu16.04noarchlinux-aws-hwe< 4.15.0-1109.116~16.04.1UNKNOWN
ubuntu20.04noarchlinux-azure< 5.4.0-1055.57UNKNOWN
ubuntu14.04noarchlinux-azure< 4.15.0-1121.134~14.04.1UNKNOWN
ubuntu16.04noarchlinux-azure< 4.15.0-1121.134~16.04.1UNKNOWN
ubuntu18.04noarchlinux-azure-4.15< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	18.04	noarch	linux	< any	UNKNOWN
ubuntu	20.04	noarch	linux	< 5.4.0-80.90	UNKNOWN
ubuntu	18.04	noarch	linux-aws	< any	UNKNOWN
ubuntu	20.04	noarch	linux-aws	< 5.4.0-1054.57	UNKNOWN
ubuntu	18.04	noarch	linux-aws-5.4	< any	UNKNOWN
ubuntu	16.04	noarch	linux-aws-hwe	< 4.15.0-1109.116~16.04.1	UNKNOWN
ubuntu	20.04	noarch	linux-azure	< 5.4.0-1055.57	UNKNOWN
ubuntu	14.04	noarch	linux-azure	< 4.15.0-1121.134~14.04.1	UNKNOWN
ubuntu	16.04	noarch	linux-azure	< 4.15.0-1121.134~16.04.1	UNKNOWN
ubuntu	18.04	noarch	linux-azure-4.15	< any	UNKNOWN