CVE-2021-47197

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.15.0-rc5 for upstream min debug 2021 10 14 11 06

Description The vulnerability is related to a null pointer dereference in the mlx5 debug cq remove() function. If mlx5 core destroy cq() fails, it proceeds with the rest of the destroy operations, and if called again by the user, it can cause an additional call to mlx5 debug cq remove(). The cq->dbg pointer is not nullified in the previous call, leading to a crash. The issue is fixed by nullifying the cq->dbg pointer after removal and only proceeding with destroy operations if the firmware returns 0 for the MLX5 CMD OP DESTROY CQ command.

Recommendations To resolve the issue, update the Linux kernel to a version that includes the fix for the null pointer dereference in mlx5 debug cq remove(). Specifically, update to a version later than 5.15.0-rc5 for upstream min debug 2021 10 14 11 06.

Note: The provided information does not specify the exact version that includes the fix, so it is recommended to update to the latest available version of the Linux kernel.