CVE-2021-47448

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel has a vulnerability that can cause an infinite loop in the recvmsg() function if the caller provides the MSG WAITALL flag, the data present in the receive queue is not sufficient to fulfill the request, and no more data is received by the peer. This can lead to an RCU stall, causing the rcu preempt kthread to starve for CPU time, resulting in expected OOM behavior. The vulnerability can be triggered by leveraging the mptcp wait data() function, which always returns with no wait when the MPTCP DATA READY flag is set and never cleared.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.