Description

In the Linux kernel, the following vulnerability has been resolved: udmabuf: validate ubuf->pagecount Syzbot has reported GPF in sg_alloc_append_table_from_pages(). The problem was in ubuf->pages == ZERO_PTR. ubuf->pagecount is calculated from arguments passed from user-space. If user creates udmabuf with list.size == 0 then ubuf->pagecount will be also equal to zero; it causes kmalloc_array() to return ZERO_PTR. Fix it by validating ubuf->pagecount before passing it to kmalloc_array().

INFO

Published Date :

2025-02-26T01:54:16.574Z

Last Modified :

2025-05-04T07:15:30.553Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2021-47649 vulnerability.

Vendors Products
Linux
  • Linux Kernel
Redhat
  • Enterprise Linux
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2021-47649.

URL Resource
https://git.kernel.org/stable/c/2b6dd600dd72573c23ea180b5b0b2f1813405882 cve-icon cve-icon
https://git.kernel.org/stable/c/5d50f851dd307c07ca5591297093f19967c834a9 cve-icon cve-icon
https://git.kernel.org/stable/c/811b667cefbea9cb7511a874b169d6a92907137e cve-icon cve-icon
https://git.kernel.org/stable/c/9e9b4a269f84d3230f2af84ff42322db676440d9 cve-icon cve-icon
https://git.kernel.org/stable/c/a3728d32fc61eb0fe283cb8ff60b2c8f751e2202 cve-icon cve-icon
https://git.kernel.org/stable/c/b267a8118c2b171bf7d67b90ed64154eeab9fae0 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025022649-CVE-2021-47649-f358@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2021-47649 cve-icon
https://www.cve.org/CVERecord?id=CVE-2021-47649 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact