PT-2021-8216 · Linux+3 · Linux Kernel+3

Shuang Li

Published

2021-12-13

Updated

2025-07-28

CVE-2021-47595

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.16.0-rc4+

Description The vulnerability is related to a memory corruption issue in the ets qdisc change() function of the sch ets component. This issue can cause a kernel bug, leading to a crash when a specific script is executed. The script involves adding and changing traffic control disciplines using the tc command. The vulnerability can be exploited to cause a denial of service.

Recommendations To resolve this issue, update the Linux kernel to a version later than 5.16.0-rc4+. As a temporary workaround, consider disabling the sch ets module until a patch is available.

Exploit

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

BDU:2024-11529

CVE-2021-47595

OPENSUSE-SU-2024_2362-1

OPENSUSE-SU-2024_2372-1

OPENSUSE-SU-2024_2394-1

SUSE-SU-2024:2362-1

SUSE-SU-2024:2372-1

SUSE-SU-2024:2384-1

SUSE-SU-2024:2394-1

SUSE-SU-2024:2939-1

SUSE-SU-2025:02264-1

SUSE-SU-2025:02321-1

SUSE-SU-2025:02322-1

SUSE-SU-2025:02537-1

SUSE-SU-2025:2264-1

SUSE-SU-2025_02264-1

SUSE-SU-2025_02537-1

Affected Products

Astra Linux

Linux Kernel

Red Os

Suse

PT-2021-8216 · Linux+3 · Linux Kernel+3

CVE-2021-47595

Weakness Enumeration

Related Identifiers

Affected Products

References · 1782