Linux · Linux Kernel · CVE-2021-47261
**Name of the Vulnerable Software and Affected Versions**
Linux kernel (affected versions not specified)
**Description**
The issue arises from the function `init cq frag buf()` initializing the wrong buffer due to the `get cqe()` function always returning CQEs from `cq->buf`. This leads to accessing elements beyond the size of the current `cq->buf` when enlarging the CQ, resulting in a kernel panic. The fix involves getting the needed CQE by calling `mlx5 frag buf get wqe()` with the correct source buffer as a parameter.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.