THREATINT

We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Fathom (Privacy friendly web analytics)
Zendesk (Helpdesk and Chat)

Ok

Home | EN
Support
CVE
PUBLISHED

CVE-2021-47003

dmaengine: idxd: Fix potential null dereference on pointer status

AssignerLinux
Reserved2024-02-27
Published2024-02-28
Updated2024-06-04

Description

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Fix potential null dereference on pointer status There are calls to idxd_cmd_exec that pass a null status pointer however a recent commit has added an assignment to *status that can end up with a null pointer dereference. The function expects a null status pointer sometimes as there is a later assignment to *status where status is first null checked. Fix the issue by null checking status before making the assignment. Addresses-Coverity: ("Explicit null dereferenced")

Product status

Default status
unaffected

40e3b5c12864 before 5756f757c725
affected

89e3becd8f82 before 2280b4cc29d8
affected

89e3becd8f82 before 7bc402f843e7
affected

89e3becd8f82 before 28ac8e03c43d
affected

Default status
affected

5.11
affected

Any version before 5.11
unaffected

5.10.38
unaffected

5.11.22
unaffected

5.12.5
unaffected

5.13
unaffected

References

https://git.kernel.org/stable/c/5756f757c72501ef1a16f5f63f940623044180e9

https://git.kernel.org/stable/c/2280b4cc29d8cdd2be3d1b2d1ea4f958e2131c97

https://git.kernel.org/stable/c/7bc402f843e7817a4a808e7b9ab0bcd7ffd55bfa

https://git.kernel.org/stable/c/28ac8e03c43dfc6a703aa420d18222540b801120

cve.org CVE-2021-47003

nvd.nist.gov CVE-2021-47003

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2021-47003
Find us on
Data Privacy
Terms of Use
Logo BSI Allianz für Cyber-Sicherheit
© Copyright 2024 THREATINT. Made in Cyprus with +