CVE-2021-47604

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to the vduse function in the Linux kernel, specifically with the get config() function. It checks the len variable but not the offset variable, which could result in an out of bounds read if offset > dev->config size. The problem arises because both variables are unsigned, and the subtraction dev->config size - offset would result in a very high unsigned value. The vhost vdpa config validate() function is supposed to validate len and offset, but the code's safety is still a concern. This vulnerability may allow an attacker to cause a denial of service.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.