CVE-2021-47029

Name of the Vulnerable Software and Affected Versions Linux kernel version 5.4.98

Description A vulnerability in the Linux kernel has been resolved, which fixes a kernel warning when adding a monitor interface in the mt76 connac mcu uni add dev routine. The issue is related to the mt76 connac lib module and affects the Linux kernel version 5.4.98. The vulnerability is caused by a warning in the CPU, specifically in the mt76 connac mcu uni add dev function, which is called by the mt7921 eeprom init function. The call trace shows that the issue is related to the addition of a virtual monitor interface.

Recommendations To resolve this issue, update the Linux kernel to a version that includes the fix for this vulnerability. Specifically, update to a version later than 5.4.98. As a temporary workaround, consider disabling the mt76 connac mcu uni add dev function until a patch is available. Restrict access to the vulnerable module mt76 connac lib to minimize the risk of exploitation. Avoid using the mt76 connac mcu uni add dev function in the affected API endpoint until the issue is resolved.