CVE-2021-47126

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.12.0

Description The vulnerability is related to a slab-out-of-bounds read in the fib6 nh flush exceptions function in the Linux kernel's IPv6 routing code. This issue can be exploited to cause a denial of service. The vulnerability was reported by syzbot and is associated with a read of size 8 at address ffff8880145c78f8 by task syz-executor.4/17760. The call trace includes several kernel functions such as fib6 nh get excptn bucket, fib6 nh flush exceptions, fib6 nh release, and rcu core.

Recommendations To resolve this issue, update the Linux kernel to version 5.12.0 or later. If updating is not possible, consider applying patches or configuration changes as recommended by the Linux kernel community or distribution maintainers to mitigate the vulnerability. As a temporary workaround, consider disabling the fib6 nh flush exceptions function until a patch is available. However, this may have unintended consequences on the system's functionality and should be done with caution.