LinuxVULNRICHMENT:CVE-2021-47006CVE-2021-47006 ARM: 9064/1: hw_breakpoint: Do not directly check the event's overflow_handler hook
In the Linux kernel, the following vulnerability has been resolved:
ARM: 9064/1: hw_breakpoint: Do not directly check the event’s overflow_handler hook
The commit 1879445dfa7b (“perf/core: Set event’s default
::overflow_handler()”) set a default event->overflow_handler in
perf_event_alloc(), and replace the check event->overflow_handler with
is_default_overflow_handler(), but one is missing.
Currently, the bp->overflow_handler can not be NULL. As a result,
enable_single_step() is always not invoked.
Comments from Zhen Lei:
https://patchwork.kernel.org/project/linux-arm-kernel/patch/[email protected]/
CNA Affected
[
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "unaffected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"arch/arm/kernel/hw_breakpoint.c"
],
"versions": [
{
"version": "1879445dfa7b",
"lessThan": "555a70f7fff0",
"status": "affected",
"versionType": "git"
},
{
"version": "1879445dfa7b",
"lessThan": "ed1f67465327",
"status": "affected",
"versionType": "git"
},
{
"version": "1879445dfa7b",
"lessThan": "a9938d6d78a2",
"status": "affected",
"versionType": "git"
},
{
"version": "1879445dfa7b",
"lessThan": "3ed8832aeaa9",
"status": "affected",
"versionType": "git"
},
{
"version": "1879445dfa7b",
"lessThan": "630146203108",
"status": "affected",
"versionType": "git"
},
{
"version": "1879445dfa7b",
"lessThan": "7eeacc6728c5",
"status": "affected",
"versionType": "git"
},
{
"version": "1879445dfa7b",
"lessThan": "dabe299425b1",
"status": "affected",
"versionType": "git"
},
{
"version": "1879445dfa7b",
"lessThan": "a506bd575629",
"status": "affected",
"versionType": "git"
}
]
},
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "affected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"arch/arm/kernel/hw_breakpoint.c"
],
"versions": [
{
"version": "4.7",
"status": "affected"
},
{
"version": "0",
"lessThan": "4.7",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "4.9.269",
"lessThanOrEqual": "4.9.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "4.14.233",
"lessThanOrEqual": "4.14.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "4.19.191",
"lessThanOrEqual": "4.19.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.4.120",
"lessThanOrEqual": "5.4.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.10.38",
"lessThanOrEqual": "5.10.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.11.22",
"lessThanOrEqual": "5.11.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.12.5",
"lessThanOrEqual": "5.12.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.13",
"lessThanOrEqual": "*",
"status": "unaffected",
"versionType": "original_commit_for_fix"
}
]
}
]References
git.kernel.org/stable/c/3ed8832aeaa9a37b0fc386bb72ff604352567c80
git.kernel.org/stable/c/555a70f7fff03bd669123487905c47ae27dbdaac
git.kernel.org/stable/c/630146203108bf6b8934eec0dfdb3e46dcb917de
git.kernel.org/stable/c/7eeacc6728c5478e3c01bc82a1f08958eaa12366
git.kernel.org/stable/c/a506bd5756290821a4314f502b4bafc2afcf5260
git.kernel.org/stable/c/a9938d6d78a238d6ab8de57a4d3dcf77adceb9bb
git.kernel.org/stable/c/dabe299425b1a53a69461fed7ac8922ea6733a25
git.kernel.org/stable/c/ed1f67465327cec4457bb988775245b199da86e6
Related
6.8 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
13.1%