CVE-2021-47547 - OpenCVE

In the Linux kernel, the following vulnerability has been resolved: net: tulip: de4x5: fix the problem that the array 'lp->phy[8]' may be out of bound In line 5001, if all id in the array 'lp->phy[8]' is not 0, when the 'for' end, the 'k' is 8. At this time, the array 'lp->phy[8]' may be out of bound.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact Low

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

No data.

No data.

No data.

References

Link	Providers
https://git.kernel.org/stable/c/12f907cb11576b8cd0b1d95a16d1f10ed5bb7237
https://git.kernel.org/stable/c/142ead3dc70411bd5977e8c47a6d8bf22287b3f8
https://git.kernel.org/stable/c/2c1a6a9a011d622a7c61324a97a49801ba425eff
https://git.kernel.org/stable/c/61217be886b5f7402843677e4be7e7e83de9cb41
https://git.kernel.org/stable/c/77ff166909458646e66450e42909e0adacc99049
https://git.kernel.org/stable/c/d3dedaa5a601107cfedda087209772c76e364d58
https://git.kernel.org/stable/c/ec5bd0aef1cec96830d0c7e06d3597d9e786cc98
https://git.kernel.org/stable/c/f059fa40f0fcc6bc7a12e0f2a2504e9a4ff74f1f
https://lore.kernel.org/linux-cve-announce/2024052441-CVE-2021-47547-f3e7@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2021-47547
https://www.cve.org/CVERecord?id=CVE-2021-47547

History

No history.

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2024-05-24T15:09:51.940Z

Updated: 2024-08-04T05:39:59.807Z

Reserved: 2024-05-24T15:02:54.829Z

Link: CVE-2021-47547

Vulnrichment

Updated: 2024-08-04T05:39:59.807Z

NVD

Status : Awaiting Analysis

Published: 2024-05-24T15:15:19.570

Modified: 2024-05-24T18:09:20.027

Link: CVE-2021-47547

Redhat

Severity : Moderate

Publid Date: 2024-05-24T00:00:00Z

Links: CVE-2021-47547 - Bugzilla

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2021-47547", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2024-05-24T15:02:54.829Z", "datePublished": "2024-05-24T15:09:51.940Z", "dateUpdated": "2024-08-04T05:39:59.807Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2024-05-29T05:09:51.201Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: tulip: de4x5: fix the problem that the array 'lp->phy[8]' may be out of bound\n\nIn line 5001, if all id in the array 'lp->phy[8]' is not 0, when the\n'for' end, the 'k' is 8.\n\nAt this time, the array 'lp->phy[8]' may be out of bound."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/net/ethernet/dec/tulip/de4x5.c"], "versions": [{"version": "1da177e4c3f4", "lessThan": "ec5bd0aef1ce", "status": "affected", "versionType": "git"}, {"version": "1da177e4c3f4", "lessThan": "142ead3dc704", "status": "affected", "versionType": "git"}, {"version": "1da177e4c3f4", "lessThan": "d3dedaa5a601", "status": "affected", "versionType": "git"}, {"version": "1da177e4c3f4", "lessThan": "2c1a6a9a011d", "status": "affected", "versionType": "git"}, {"version": "1da177e4c3f4", "lessThan": "77ff16690945", "status": "affected", "versionType": "git"}, {"version": "1da177e4c3f4", "lessThan": "f059fa40f0fc", "status": "affected", "versionType": "git"}, {"version": "1da177e4c3f4", "lessThan": "12f907cb1157", "status": "affected", "versionType": "git"}, {"version": "1da177e4c3f4", "lessThan": "61217be886b5", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/net/ethernet/dec/tulip/de4x5.c"], "versions": [{"version": "4.4.294", "lessThanOrEqual": "4.4.*", "status": "unaffected", "versionType": "custom"}, {"version": "4.9.292", "lessThanOrEqual": "4.9.*", "status": "unaffected", "versionType": "custom"}, {"version": "4.14.257", "lessThanOrEqual": "4.14.*", "status": "unaffected", "versionType": "custom"}, {"version": "4.19.220", "lessThanOrEqual": "4.19.*", "status": "unaffected", "versionType": "custom"}, {"version": "5.4.164", "lessThanOrEqual": "5.4.*", "status": "unaffected", "versionType": "custom"}, {"version": "5.10.84", "lessThanOrEqual": "5.10.*", "status": "unaffected", "versionType": "custom"}, {"version": "5.15.7", "lessThanOrEqual": "5.15.*", "status": "unaffected", "versionType": "custom"}, {"version": "5.16", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "references": [{"url": "https://git.kernel.org/stable/c/ec5bd0aef1cec96830d0c7e06d3597d9e786cc98"}, {"url": "https://git.kernel.org/stable/c/142ead3dc70411bd5977e8c47a6d8bf22287b3f8"}, {"url": "https://git.kernel.org/stable/c/d3dedaa5a601107cfedda087209772c76e364d58"}, {"url": "https://git.kernel.org/stable/c/2c1a6a9a011d622a7c61324a97a49801ba425eff"}, {"url": "https://git.kernel.org/stable/c/77ff166909458646e66450e42909e0adacc99049"}, {"url": "https://git.kernel.org/stable/c/f059fa40f0fcc6bc7a12e0f2a2504e9a4ff74f1f"}, {"url": "https://git.kernel.org/stable/c/12f907cb11576b8cd0b1d95a16d1f10ed5bb7237"}, {"url": "https://git.kernel.org/stable/c/61217be886b5f7402843677e4be7e7e83de9cb41"}], "title": "net: tulip: de4x5: fix the problem that the array 'lp->phy[8]' may be out of bound", "x_generator": {"engine": "bippy-a5840b7849dd"}}, "adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2021-47547", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-05-29T16:45:48.752203Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-06-04T17:13:40.130Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T05:39:59.807Z"}, "title": "CVE Program Container", "references": [{"url": "https://git.kernel.org/stable/c/ec5bd0aef1cec96830d0c7e06d3597d9e786cc98", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/142ead3dc70411bd5977e8c47a6d8bf22287b3f8", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/d3dedaa5a601107cfedda087209772c76e364d58", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/2c1a6a9a011d622a7c61324a97a49801ba425eff", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/77ff166909458646e66450e42909e0adacc99049", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/f059fa40f0fcc6bc7a12e0f2a2504e9a4ff74f1f", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/12f907cb11576b8cd0b1d95a16d1f10ed5bb7237", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/61217be886b5f7402843677e4be7e7e83de9cb41", "tags": ["x_transferred"]}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://git.kernel.org/stable/c/ec5bd0aef1cec96830d0c7e06d3597d9e786cc98", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/142ead3dc70411bd5977e8c47a6d8bf22287b3f8", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/d3dedaa5a601107cfedda087209772c76e364d58", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/2c1a6a9a011d622a7c61324a97a49801ba425eff", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/77ff166909458646e66450e42909e0adacc99049", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/f059fa40f0fcc6bc7a12e0f2a2504e9a4ff74f1f", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/12f907cb11576b8cd0b1d95a16d1f10ed5bb7237", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/61217be886b5f7402843677e4be7e7e83de9cb41", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T05:39:59.807Z"}}, {"metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2021-47547", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-05-29T16:45:48.752203Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-05-29T16:48:49.368Z"}, "title": "CISA ADP Vulnrichment"}], "cna": {"title": "net: tulip: de4x5: fix the problem that the array 'lp->phy[8]' may be out of bound", "affected": [{"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "vendor": "Linux", "product": "Linux", "versions": [{"status": "affected", "version": "1da177e4c3f4", "lessThan": "ec5bd0aef1ce", "versionType": "git"}, {"status": "affected", "version": "1da177e4c3f4", "lessThan": "142ead3dc704", "versionType": "git"}, {"status": "affected", "version": "1da177e4c3f4", "lessThan": "d3dedaa5a601", "versionType": "git"}, {"status": "affected", "version": "1da177e4c3f4", "lessThan": "2c1a6a9a011d", "versionType": "git"}, {"status": "affected", "version": "1da177e4c3f4", "lessThan": "77ff16690945", "versionType": "git"}, {"status": "affected", "version": "1da177e4c3f4", "lessThan": "f059fa40f0fc", "versionType": "git"}, {"status": "affected", "version": "1da177e4c3f4", "lessThan": "12f907cb1157", "versionType": "git"}, {"status": "affected", "version": "1da177e4c3f4", "lessThan": "61217be886b5", "versionType": "git"}], "programFiles": ["drivers/net/ethernet/dec/tulip/de4x5.c"], "defaultStatus": "unaffected"}, {"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "vendor": "Linux", "product": "Linux", "versions": [{"status": "unaffected", "version": "4.4.294", "versionType": "custom", "lessThanOrEqual": "4.4.*"}, {"status": "unaffected", "version": "4.9.292", "versionType": "custom", "lessThanOrEqual": "4.9.*"}, {"status": "unaffected", "version": "4.14.257", "versionType": "custom", "lessThanOrEqual": "4.14.*"}, {"status": "unaffected", "version": "4.19.220", "versionType": "custom", "lessThanOrEqual": "4.19.*"}, {"status": "unaffected", "version": "5.4.164", "versionType": "custom", "lessThanOrEqual": "5.4.*"}, {"status": "unaffected", "version": "5.10.84", "versionType": "custom", "lessThanOrEqual": "5.10.*"}, {"status": "unaffected", "version": "5.15.7", "versionType": "custom", "lessThanOrEqual": "5.15.*"}, {"status": "unaffected", "version": "5.16", "versionType": "original_commit_for_fix", "lessThanOrEqual": "*"}], "programFiles": ["drivers/net/ethernet/dec/tulip/de4x5.c"], "defaultStatus": "affected"}], "references": [{"url": "https://git.kernel.org/stable/c/ec5bd0aef1cec96830d0c7e06d3597d9e786cc98"}, {"url": "https://git.kernel.org/stable/c/142ead3dc70411bd5977e8c47a6d8bf22287b3f8"}, {"url": "https://git.kernel.org/stable/c/d3dedaa5a601107cfedda087209772c76e364d58"}, {"url": "https://git.kernel.org/stable/c/2c1a6a9a011d622a7c61324a97a49801ba425eff"}, {"url": "https://git.kernel.org/stable/c/77ff166909458646e66450e42909e0adacc99049"}, {"url": "https://git.kernel.org/stable/c/f059fa40f0fcc6bc7a12e0f2a2504e9a4ff74f1f"}, {"url": "https://git.kernel.org/stable/c/12f907cb11576b8cd0b1d95a16d1f10ed5bb7237"}, {"url": "https://git.kernel.org/stable/c/61217be886b5f7402843677e4be7e7e83de9cb41"}], "x_generator": {"engine": "bippy-a5840b7849dd"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: tulip: de4x5: fix the problem that the array 'lp->phy[8]' may be out of bound\n\nIn line 5001, if all id in the array 'lp->phy[8]' is not 0, when the\n'for' end, the 'k' is 8.\n\nAt this time, the array 'lp->phy[8]' may be out of bound."}], "providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2024-05-29T05:09:51.201Z"}}}, "cveMetadata": {"cveId": "CVE-2021-47547", "state": "PUBLISHED", "dateUpdated": "2024-08-04T05:39:59.807Z", "dateReserved": "2024-05-24T15:02:54.829Z", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "datePublished": "2024-05-24T15:09:51.940Z", "assignerShortName": "Linux"}, "dataVersion": "5.1"}

{"bugzilla": {"description": "kernel: net: tulip: de4x5: fix the problem that the array 'lp->phy[8]' may be out of bound", "id": "2283402", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283402"}, "csaw": false, "cvss3": {"cvss3_base_score": "6.1", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H", "status": "draft"}, "cwe": "(CWE-119|CWE-787)", "details": ["In the Linux kernel, the following vulnerability has been resolved:\nnet: tulip: de4x5: fix the problem that the array 'lp->phy[8]' may be out of bound\nIn line 5001, if all id in the array 'lp->phy[8]' is not 0, when the\n'for' end, the 'k' is 8.\nAt this time, the array 'lp->phy[8]' may be out of bound.", "An out-of-bounds memory access flaw was found in the Linux kernel\u2019s Ethernet DECchip cards driver. This flaw allows a local user to crash the system."], "mitigation": {"lang": "en:us", "value": "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."}, "name": "CVE-2021-47547", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Out of support scope", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Out of support scope", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 9"}], "public_date": "2024-05-24T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2021-47547\nhttps://nvd.nist.gov/vuln/detail/CVE-2021-47547\nhttps://lore.kernel.org/linux-cve-announce/2024052441-CVE-2021-47547-f3e7@gregkh/T"], "statement": "Red Hat Enterprise Linux is not affected.", "threat_severity": "Moderate", "upstream_fix": "kernel 4.4.294, kernel 4.9.292, kernel 4.14.257, kernel 4.19.220, kernel 5.4.164, kernel 5.10.84, kernel 5.15.7, kernel 5.16"}