CVE-2021-47040

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to a buffer overflow in the io provide buffers prep() function, which could allow a remote attacker to impact the confidentiality, integrity, and availability of data. The problem was reported by Colin, who noted possible overflow and sign extension issues. The fix involves using check overflow helpers and changing the type of struct io provide buf::len to unsigned, as it doesn't make sense to keep it signed.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.