Description

In the Linux kernel, the following vulnerability has been resolved: net: qrtr: fix OOB Read in qrtr_endpoint_post Syzbot reported slab-out-of-bounds Read in qrtr_endpoint_post. The problem was in wrong _size_ type: if (len != ALIGN(size, 4) + hdrlen) goto err; If size from qrtr_hdr is 4294967293 (0xfffffffd), the result of ALIGN(size, 4) will be 0. In case of len == hdrlen and size == 4294967293 in header this check won't fail and skb_put_data(skb, data + hdrlen, size); will read out of bound from data, which is hdrlen allocated block.

INFO

Published Date :

2024-05-21T14:19:40.363Z

Last Modified :

2025-05-04T07:06:57.627Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2021-47240 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2021-47240.

URL Resource
https://git.kernel.org/stable/c/19892ab9c9d838e2e5a7744d36e4bb8b7c3292fe cve-icon cve-icon
https://git.kernel.org/stable/c/26b8d10703a9be45d6097946b2b4011f7dd2c56f cve-icon cve-icon
https://git.kernel.org/stable/c/960b08dd36de1e341e3eb43d1c547513e338f4f8 cve-icon cve-icon
https://git.kernel.org/stable/c/ad9d24c9429e2159d1e279dc3a83191ccb4daf1d cve-icon cve-icon
https://git.kernel.org/stable/c/f8111c0d7ed42ede41a3d0d393b104de0730a8a6 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024052141-CVE-2021-47240-b6f9@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2021-47240 cve-icon
https://www.cve.org/CVERecord?id=CVE-2021-47240 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact