CVE-2021-47317

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to the powerpc/bpf component of the Linux kernel, where a check added to the powerpc64 JIT did not look at the correct BPF instruction. This resulted in programs being accepted and incorrectly JIT'd, leading to soft lockups, as seen with the atomic bounds test. The problem arose after a commit converted BPF XADD to BPF ATOMIC and added a way to distinguish instructions based on the immediate field. Existing JIT implementations were updated to check for the immediate field and reject programs utilizing anything more than BPF ADD in the immediate field.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.