PT-2024-11091 · Linux+3 · Linux Kernel+3

Published

2021-05-11

Updated

2024-12-06

CVE-2021-46983

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel version 4.18.0-304.el8.x86 64

Description The issue arises when running some traffic and taking down the link on a peer, resulting in a retry counter exceeded error. This error leads to the nvmet rdma error comp function attempting to access the cq context to obtain the queue. However, the cq context is no longer valid after the fix to use the shared CQ mechanism and should be obtained similar to how it is obtained in other functions from the wc->qp. The error received is a transport retry counter exceeded error with status 12.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

BDU:2025-05303

CESA-2021_4356

CVE-2021-46983

OPENSUSE-SU-2024_1489-1

RHSA-2021:4356

RHSA-2021_4356

SUSE-SU-2024:1465-1

SUSE-SU-2024:1489-1

Affected Products

Centos

Linux Kernel

Red Hat

Suse

PT-2024-11091 · Linux+3 · Linux Kernel+3

CVE-2021-46983

Weakness Enumeration

Related Identifiers

Affected Products

References · 347