CVE-2021-47430

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.15.0-rc4+

Description The issue is related to the x86/entry component of the Linux kernel, where a warning can still trigger on a machine that supports SMAP but has it disabled in the kernel config. This warning is related to the irqentry enter from user mode function and can be triggered when running the syscall nt selftest. The warning is caused by the AC flag being set when in the kernel, and it can be mitigated by clearing the X86 FEATURE SMAP feature when CONFIG X86 SMAP is not enabled.

Recommendations To resolve the issue, update the Linux kernel to a version that includes the fix for this issue. As a temporary workaround, consider disabling the irqentry enter from user mode function until a patch is available. Restrict access to the syscall nt selftest to minimize the risk of exploitation. Avoid using the nosmap parameter at boot time until the issue is resolved.