PT-2024-11371 · Linux+3 · Linux Kernel+3

Jeremy Linton

·

Published

2021-09-10

·

Updated

2024-06-25

·

CVE-2021-47374

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The issue is related to the dma-debug feature in the Linux kernel, which can cause runtime problems for some drivers using the DMA API. The error message can be reached several million times per second, leading to spam in the kernel's printk buffer and high CPU usage. To address this, the error message is now handled using err printk() instead of rate limiting, making it easier to identify drivers that suffer from this issue.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Allocation of Resources Without Limits

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-779CWE-770

Related Identifiers

BDU:2025-14374
CVE-2021-47374
OPENSUSE-SU-2024_2189-1
SUSE-SU-2024:2008-1
SUSE-SU-2024:2011-1
SUSE-SU-2024:2019-1
SUSE-SU-2024:2189-1
SUSE-SU-2024:2190-1

Affected Products

Astra Linux
Debian
Linux Kernel
Suse