CVE-2021-47347 - OpenCVE

In the Linux kernel, the following vulnerability has been resolved: wl1251: Fix possible buffer overflow in wl1251_cmd_scan Function wl1251_cmd_scan calls memcpy without checking the length. Harden by checking the length is within the maximum allowed size.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact total

No data.

No data.

No data.

References

Link	Providers
https://git.kernel.org/stable/c/0f6c0488368c9ac1aa685821916fadba32f5d1ef
https://git.kernel.org/stable/c/115103f6e3f1c26c473766c16439c7c8b235529a
https://git.kernel.org/stable/c/302e2ee34c5f7c5d805b7f835d9a6f2b43474e2a
https://git.kernel.org/stable/c/40af3960a15339e8bbd3be50c3bc7b35e1a0b6ea
https://git.kernel.org/stable/c/57ad99ae3c6738ba87bad259bb57c641ca68ebf6
https://git.kernel.org/stable/c/c5e4a10d7bd5d4f419d8b9705dff60cf69b302a1
https://git.kernel.org/stable/c/d10a87a3535cce2b890897914f5d0d83df669c63
https://git.kernel.org/stable/c/d3d8b9c9c7843dce31e284927d4c9904fd5a510a
https://git.kernel.org/stable/c/d71dddeb5380613f9ef199f3e7368fd78fb1a46e
https://lore.kernel.org/linux-cve-announce/2024052139-CVE-2021-47347-82e1@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2021-47347
https://www.cve.org/CVERecord?id=CVE-2021-47347

History

Wed, 13 Nov 2024 22:15:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-120
Metrics	cvssV3_1 `{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}` ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`	cvssV3_1 `{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}` ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2024-05-21T14:35:52.947Z

Updated: 2024-11-13T22:01:36.157Z

Reserved: 2024-05-21T14:28:16.981Z

Link: CVE-2021-47347

Vulnrichment

Updated: 2024-08-04T05:32:08.562Z

NVD

Status : Awaiting Analysis

Published: 2024-05-21T15:15:21.287

Modified: 2024-11-13T22:35:03.013

Link: CVE-2021-47347

Redhat

Severity : Moderate

Publid Date: 2024-05-21T00:00:00Z

Links: CVE-2021-47347 - Bugzilla

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2021-47347", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2024-05-21T14:28:16.981Z", "datePublished": "2024-05-21T14:35:52.947Z", "dateUpdated": "2024-11-13T22:01:36.157Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2024-11-04T12:04:09.905Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nwl1251: Fix possible buffer overflow in wl1251_cmd_scan\n\nFunction wl1251_cmd_scan calls memcpy without checking the length.\nHarden by checking the length is within the maximum allowed size."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/net/wireless/ti/wl1251/cmd.c"], "versions": [{"version": "1da177e4c3f4", "lessThan": "57ad99ae3c67", "status": "affected", "versionType": "git"}, {"version": "1da177e4c3f4", "lessThan": "d3d8b9c9c784", "status": "affected", "versionType": "git"}, {"version": "1da177e4c3f4", "lessThan": "0f6c0488368c", "status": "affected", "versionType": "git"}, {"version": "1da177e4c3f4", "lessThan": "115103f6e3f1", "status": "affected", "versionType": "git"}, {"version": "1da177e4c3f4", "lessThan": "d71dddeb5380", "status": "affected", "versionType": "git"}, {"version": "1da177e4c3f4", "lessThan": "c5e4a10d7bd5", "status": "affected", "versionType": "git"}, {"version": "1da177e4c3f4", "lessThan": "302e2ee34c5f", "status": "affected", "versionType": "git"}, {"version": "1da177e4c3f4", "lessThan": "40af3960a153", "status": "affected", "versionType": "git"}, {"version": "1da177e4c3f4", "lessThan": "d10a87a3535c", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/net/wireless/ti/wl1251/cmd.c"], "versions": [{"version": "4.4.276", "lessThanOrEqual": "4.4.*", "status": "unaffected", "versionType": "semver"}, {"version": "4.9.276", "lessThanOrEqual": "4.9.*", "status": "unaffected", "versionType": "semver"}, {"version": "4.14.240", "lessThanOrEqual": "4.14.*", "status": "unaffected", "versionType": "semver"}, {"version": "4.19.198", "lessThanOrEqual": "4.19.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.4.133", "lessThanOrEqual": "5.4.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.10.51", "lessThanOrEqual": "5.10.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.12.18", "lessThanOrEqual": "5.12.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.13.3", "lessThanOrEqual": "5.13.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.14", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "references": [{"url": "https://git.kernel.org/stable/c/57ad99ae3c6738ba87bad259bb57c641ca68ebf6"}, {"url": "https://git.kernel.org/stable/c/d3d8b9c9c7843dce31e284927d4c9904fd5a510a"}, {"url": "https://git.kernel.org/stable/c/0f6c0488368c9ac1aa685821916fadba32f5d1ef"}, {"url": "https://git.kernel.org/stable/c/115103f6e3f1c26c473766c16439c7c8b235529a"}, {"url": "https://git.kernel.org/stable/c/d71dddeb5380613f9ef199f3e7368fd78fb1a46e"}, {"url": "https://git.kernel.org/stable/c/c5e4a10d7bd5d4f419d8b9705dff60cf69b302a1"}, {"url": "https://git.kernel.org/stable/c/302e2ee34c5f7c5d805b7f835d9a6f2b43474e2a"}, {"url": "https://git.kernel.org/stable/c/40af3960a15339e8bbd3be50c3bc7b35e1a0b6ea"}, {"url": "https://git.kernel.org/stable/c/d10a87a3535cce2b890897914f5d0d83df669c63"}], "title": "wl1251: Fix possible buffer overflow in wl1251_cmd_scan", "x_generator": {"engine": "bippy-9e1c9544281a"}}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-120", "lang": "en", "description": "CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2024-11-13T22:00:32.437065Z", "id": "CVE-2021-47347", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-11-13T22:01:36.157Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T05:32:08.562Z"}, "title": "CVE Program Container", "references": [{"url": "https://git.kernel.org/stable/c/57ad99ae3c6738ba87bad259bb57c641ca68ebf6", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/d3d8b9c9c7843dce31e284927d4c9904fd5a510a", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/0f6c0488368c9ac1aa685821916fadba32f5d1ef", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/115103f6e3f1c26c473766c16439c7c8b235529a", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/d71dddeb5380613f9ef199f3e7368fd78fb1a46e", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/c5e4a10d7bd5d4f419d8b9705dff60cf69b302a1", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/302e2ee34c5f7c5d805b7f835d9a6f2b43474e2a", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/40af3960a15339e8bbd3be50c3bc7b35e1a0b6ea", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/d10a87a3535cce2b890897914f5d0d83df669c63", "tags": ["x_transferred"]}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://git.kernel.org/stable/c/57ad99ae3c6738ba87bad259bb57c641ca68ebf6", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/d3d8b9c9c7843dce31e284927d4c9904fd5a510a", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/0f6c0488368c9ac1aa685821916fadba32f5d1ef", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/115103f6e3f1c26c473766c16439c7c8b235529a", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/d71dddeb5380613f9ef199f3e7368fd78fb1a46e", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/c5e4a10d7bd5d4f419d8b9705dff60cf69b302a1", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/302e2ee34c5f7c5d805b7f835d9a6f2b43474e2a", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/40af3960a15339e8bbd3be50c3bc7b35e1a0b6ea", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/d10a87a3535cce2b890897914f5d0d83df669c63", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T05:32:08.562Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2021-47347", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-11-13T22:00:32.437065Z"}}}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-120", "description": "CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-05-28T18:30:51.517Z"}}], "cna": {"title": "wl1251: Fix possible buffer overflow in wl1251_cmd_scan", "affected": [{"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "vendor": "Linux", "product": "Linux", "versions": [{"status": "affected", "version": "1da177e4c3f4", "lessThan": "57ad99ae3c67", "versionType": "git"}, {"status": "affected", "version": "1da177e4c3f4", "lessThan": "d3d8b9c9c784", "versionType": "git"}, {"status": "affected", "version": "1da177e4c3f4", "lessThan": "0f6c0488368c", "versionType": "git"}, {"status": "affected", "version": "1da177e4c3f4", "lessThan": "115103f6e3f1", "versionType": "git"}, {"status": "affected", "version": "1da177e4c3f4", "lessThan": "d71dddeb5380", "versionType": "git"}, {"status": "affected", "version": "1da177e4c3f4", "lessThan": "c5e4a10d7bd5", "versionType": "git"}, {"status": "affected", "version": "1da177e4c3f4", "lessThan": "302e2ee34c5f", "versionType": "git"}, {"status": "affected", "version": "1da177e4c3f4", "lessThan": "40af3960a153", "versionType": "git"}, {"status": "affected", "version": "1da177e4c3f4", "lessThan": "d10a87a3535c", "versionType": "git"}], "programFiles": ["drivers/net/wireless/ti/wl1251/cmd.c"], "defaultStatus": "unaffected"}, {"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "vendor": "Linux", "product": "Linux", "versions": [{"status": "unaffected", "version": "4.4.276", "versionType": "semver", "lessThanOrEqual": "4.4.*"}, {"status": "unaffected", "version": "4.9.276", "versionType": "semver", "lessThanOrEqual": "4.9.*"}, {"status": "unaffected", "version": "4.14.240", "versionType": "semver", "lessThanOrEqual": "4.14.*"}, {"status": "unaffected", "version": "4.19.198", "versionType": "semver", "lessThanOrEqual": "4.19.*"}, {"status": "unaffected", "version": "5.4.133", "versionType": "semver", "lessThanOrEqual": "5.4.*"}, {"status": "unaffected", "version": "5.10.51", "versionType": "semver", "lessThanOrEqual": "5.10.*"}, {"status": "unaffected", "version": "5.12.18", "versionType": "semver", "lessThanOrEqual": "5.12.*"}, {"status": "unaffected", "version": "5.13.3", "versionType": "semver", "lessThanOrEqual": "5.13.*"}, {"status": "unaffected", "version": "5.14", "versionType": "original_commit_for_fix", "lessThanOrEqual": "*"}], "programFiles": ["drivers/net/wireless/ti/wl1251/cmd.c"], "defaultStatus": "affected"}], "references": [{"url": "https://git.kernel.org/stable/c/57ad99ae3c6738ba87bad259bb57c641ca68ebf6"}, {"url": "https://git.kernel.org/stable/c/d3d8b9c9c7843dce31e284927d4c9904fd5a510a"}, {"url": "https://git.kernel.org/stable/c/0f6c0488368c9ac1aa685821916fadba32f5d1ef"}, {"url": "https://git.kernel.org/stable/c/115103f6e3f1c26c473766c16439c7c8b235529a"}, {"url": "https://git.kernel.org/stable/c/d71dddeb5380613f9ef199f3e7368fd78fb1a46e"}, {"url": "https://git.kernel.org/stable/c/c5e4a10d7bd5d4f419d8b9705dff60cf69b302a1"}, {"url": "https://git.kernel.org/stable/c/302e2ee34c5f7c5d805b7f835d9a6f2b43474e2a"}, {"url": "https://git.kernel.org/stable/c/40af3960a15339e8bbd3be50c3bc7b35e1a0b6ea"}, {"url": "https://git.kernel.org/stable/c/d10a87a3535cce2b890897914f5d0d83df669c63"}], "x_generator": {"engine": "bippy-9e1c9544281a"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nwl1251: Fix possible buffer overflow in wl1251_cmd_scan\n\nFunction wl1251_cmd_scan calls memcpy without checking the length.\nHarden by checking the length is within the maximum allowed size."}], "providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2024-11-04T12:04:09.905Z"}}}, "cveMetadata": {"cveId": "CVE-2021-47347", "state": "PUBLISHED", "dateUpdated": "2024-11-13T22:01:36.157Z", "dateReserved": "2024-05-21T14:28:16.981Z", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "datePublished": "2024-05-21T14:35:52.947Z", "assignerShortName": "Linux"}, "dataVersion": "5.1"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nwl1251: Fix possible buffer overflow in wl1251_cmd_scan\n\nFunction wl1251_cmd_scan calls memcpy without checking the length.\nHarden by checking the length is within the maximum allowed size."}, {"lang": "es", "value": "En el kernel de Linux se ha resuelto la siguiente vulnerabilidad: wl1251: corrige posible desbordamiento del buffer en wl1251_cmd_scan. La funci\u00f3n wl1251_cmd_scan llama a memcpy sin comprobar la longitud. Endurecer comprobando que el largo est\u00e9 dentro del tama\u00f1o m\u00e1ximo permitido."}], "id": "CVE-2021-47347", "lastModified": "2024-11-13T22:35:03.013", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2024-05-21T15:15:21.287", "references": [{"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/0f6c0488368c9ac1aa685821916fadba32f5d1ef"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/115103f6e3f1c26c473766c16439c7c8b235529a"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/302e2ee34c5f7c5d805b7f835d9a6f2b43474e2a"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/40af3960a15339e8bbd3be50c3bc7b35e1a0b6ea"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/57ad99ae3c6738ba87bad259bb57c641ca68ebf6"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/c5e4a10d7bd5d4f419d8b9705dff60cf69b302a1"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/d10a87a3535cce2b890897914f5d0d83df669c63"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/d3d8b9c9c7843dce31e284927d4c9904fd5a510a"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/d71dddeb5380613f9ef199f3e7368fd78fb1a46e"}], "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-120"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{"bugzilla": {"description": "kernel: wl1251: Fix possible buffer overflow in wl1251_cmd_scan", "id": "2282407", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282407"}, "csaw": false, "cvss3": {"cvss3_base_score": "5.5", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "status": "draft"}, "cwe": "CWE-122", "details": ["In the Linux kernel, the following vulnerability has been resolved:\nwl1251: Fix possible buffer overflow in wl1251_cmd_scan\nFunction wl1251_cmd_scan calls memcpy without checking the length.\nHarden by checking the length is within the maximum allowed size."], "mitigation": {"lang": "en:us", "value": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible."}, "name": "CVE-2021-47347", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Out of support scope", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 9"}], "public_date": "2024-05-21T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2021-47347\nhttps://nvd.nist.gov/vuln/detail/CVE-2021-47347\nhttps://lore.kernel.org/linux-cve-announce/2024052139-CVE-2021-47347-82e1@gregkh/T"], "statement": "This vulnerability is rated as a moderate severity because this issue can lead to a system crash or instability, it does not pose an immediate security risk or data compromise.", "threat_severity": "Moderate", "upstream_fix": "kernel 4.4.276, kernel 4.9.276, kernel 4.14.240, kernel 4.19.198, kernel 5.4.133, kernel 5.10.51, kernel 5.12.18, kernel 5.13.3, kernel 5.14"}