PT-2024-8985 · Linux+3 · Linux Kernel+3

Marta Plantykow

Published

2024-05-24

Updated

2024-11-27

CVE-2021-47563

CVSS v2.0

6.8

Medium

Vector

AV:L/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.15.0-rc5+

Description: The issue is related to the ice driver in the Linux kernel, which manages XDP resources shared between ndo bpf op and VSI rebuild flow. When the VSI is being rebuilt, there is a problem with bpf prog refcounting. The ice prepare xdp rings() function is called with vsi->xdp prog as an argument, which is later used by ice vsi assign bpf prog(). This causes the same bpf prog pointers to be swapped, leading to a decrement in refcount when bpf prog put is called. As a result, the bpf prog may be wiped out from the system while the kernel still tries to refer to it.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Integer Underflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-191

Related Identifiers

BDU:2024-10667

CVE-2021-47563

OPENSUSE-SU-2024_2185-1

OPENSUSE-SU-2024_2189-1

SUSE-SU-2024:2008-1

SUSE-SU-2024:2010-1

SUSE-SU-2024:2011-1

SUSE-SU-2024:2019-1

SUSE-SU-2024:2183-1

SUSE-SU-2024:2185-1

SUSE-SU-2024:2189-1

SUSE-SU-2024:2190-1

Affected Products

Astra Linux

Linux Kernel

Red Os

Suse

PT-2024-8985 · Linux+3 · Linux Kernel+3

CVE-2021-47563

Weakness Enumeration

Related Identifiers

Affected Products

References · 1433