CVE-2021-47056

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to the crypto: qat module in the Linux kernel, where the ADF STATUS PF RUNNING flag is set after adf dev init. However, the vf2pf lock is initialized in adf dev init, which can fail, causing the vf2pf lock to be either not initialized or destroyed. A subsequent use of vf2pf lock will cause an issue. The problem can be fixed by only setting the ADF STATUS PF RUNNING flag if adf dev init returns 0. The adf vf2pf shutdown() function checks this flag before calling adf iov putmsg()->mutex lock(vf2pf lock). The mutex lock function is called with vf2pf lock as an argument, which can lead to issues if vf2pf lock is not properly initialized.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.