CVE-2021-47440

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.15.0-rc2-00142-g9978db750e31-dirty #11

Description The vulnerability is related to the devm regmap init encx24j600 function in the Linux kernel, which may return an error due to out-of-memory conditions, resulting in a null pointer dereference when reading or writing registers. This can cause a general protection fault in the encx24j600 spi probe function. The issue is related to the encx24j600 component of the Linux kernel.

Recommendations To resolve the issue, add an error check in the devm regmap init encx24j600 function to avoid the null pointer dereference situation. As a temporary workaround, consider disabling the encx24j600 component until a patch is available. However, since the provided information does not specify a fixed version, it is essential to monitor for updates that include the necessary error check in devm regmap init encx24j600. At the moment, there is no information about a newer version that contains a fix for this vulnerability.