CVE-2021-47395

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.14.0

Description The vulnerability is related to the mac80211 module in the Linux kernel, which is used for wireless networking. The issue arises from the ieee80211 parse tx radiotap routine, where the maximum values for VHT (Very High Throughput) MCS (Modulation and Coding Scheme) and NSS (Number of Spatial Streams) are not properly limited. This can lead to a warning being reported by syzbot, a tool used for fuzz testing the kernel. The vulnerability is resolved by limiting the injected VHT MCS and NSS in ieee80211 parse tx radiotap.

Recommendations To resolve this issue, update the Linux kernel to a version that includes the fix for this vulnerability. Specifically, versions prior to 5.14.0 are affected, so updating to 5.14.0 or later will mitigate the risk.

Note: The provided information does not specify the exact version where the fix was introduced, but it mentions that the issue is resolved in versions after the affected range. Therefore, the recommendation is to update to the latest available version of the Linux kernel to ensure the vulnerability is patched.