Vulnerability-Lookup

CVE-2021-47148 (GCVE-0-2021-47148)

Vulnerability from cvelistv5 – Published: 2024-03-25 09:07 – Updated: 2026-05-11 13:48

Title

octeontx2-pf: fix a buffer overflow in otx2_set_rxfh_context()

Summary

In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: fix a buffer overflow in otx2_set_rxfh_context() This function is called from ethtool_set_rxfh() and "*rss_context" comes from the user. Add some bounds checking to prevent memory corruption.

Severity ?

No CVSS data available.

Assigner

Linux

References

2 references

URL	Tags
https://git.kernel.org/stable/c/389146bc6d2bbb207…
https://git.kernel.org/stable/c/e5cc361e21648b75f…

Impacted products

2 products

Vendor	Product	Version
Linux	Linux	Affected: 81a4362016e7d8b17031fe1aa43cdb58a7f0f163 , < 389146bc6d2bbb20714d06624b74856320ce40f7 (git) Affected: 81a4362016e7d8b17031fe1aa43cdb58a7f0f163 , < e5cc361e21648b75f935f9571d4003aaee480214 (git)
Linux	Linux	Affected: 5.12 Unaffected: 0 , < 5.12 (semver) Unaffected: 5.12.9 , ≤ 5.12.* (semver) Unaffected: 5.13 , ≤ * (original_commit_for_fix)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47148",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-26T20:36:23.128673Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-26T20:36:29.271Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:24:40.199Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/389146bc6d2bbb20714d06624b74856320ce40f7"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e5cc361e21648b75f935f9571d4003aaee480214"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/marvell/octeontx2/nic/otx2_ethtool.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "389146bc6d2bbb20714d06624b74856320ce40f7",
              "status": "affected",
              "version": "81a4362016e7d8b17031fe1aa43cdb58a7f0f163",
              "versionType": "git"
            },
            {
              "lessThan": "e5cc361e21648b75f935f9571d4003aaee480214",
              "status": "affected",
              "version": "81a4362016e7d8b17031fe1aa43cdb58a7f0f163",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/marvell/octeontx2/nic/otx2_ethtool.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.12"
            },
            {
              "lessThan": "5.12",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.12.*",
              "status": "unaffected",
              "version": "5.12.9",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.13",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.12.9",
                  "versionStartIncluding": "5.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.13",
                  "versionStartIncluding": "5.12",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: fix a buffer overflow in otx2_set_rxfh_context()\n\nThis function is called from ethtool_set_rxfh() and \"*rss_context\"\ncomes from the user.  Add some bounds checking to prevent memory\ncorruption."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-11T13:48:57.794Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/389146bc6d2bbb20714d06624b74856320ce40f7"
        },
        {
          "url": "https://git.kernel.org/stable/c/e5cc361e21648b75f935f9571d4003aaee480214"
        }
      ],
      "title": "octeontx2-pf: fix a buffer overflow in otx2_set_rxfh_context()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47148",
    "datePublished": "2024-03-25T09:07:44.472Z",
    "dateReserved": "2024-03-04T18:12:48.845Z",
    "dateUpdated": "2026-05-11T13:48:57.794Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2021-47148",
      "date": "2026-05-20",
      "epss": "0.00022",
      "percentile": "0.0615"
    },
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"5.12\", \"versionEndExcluding\": \"5.12.9\", \"matchCriteriaId\": \"3B1CFA77-6B5E-430C-AC49-3B3508F2D903\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:5.13:rc1:*:*:*:*:*:*\", \"matchCriteriaId\": \"0CBAD0FC-C281-4666-AB2F-F8E6E1165DF7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:5.13:rc2:*:*:*:*:*:*\", \"matchCriteriaId\": \"96AC23B2-D46A-49D9-8203-8E1BEDCA8532\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:5.13:rc3:*:*:*:*:*:*\", \"matchCriteriaId\": \"DA610E30-717C-4700-9F77-A3C9244F3BFD\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"In the Linux kernel, the following vulnerability has been resolved:\\n\\nocteontx2-pf: fix a buffer overflow in otx2_set_rxfh_context()\\n\\nThis function is called from ethtool_set_rxfh() and \\\"*rss_context\\\"\\ncomes from the user.  Add some bounds checking to prevent memory\\ncorruption.\"}, {\"lang\": \"es\", \"value\": \"En el kernel de Linux se ha resuelto la siguiente vulnerabilidad: octeontx2-pf: corrige un desbordamiento del b\\u00fafer en otx2_set_rxfh_context() Esta funci\\u00f3n se llama desde ethtool_set_rxfh() y \\\"*rss_context\\\" proviene del usuario. Agregue algunas comprobaciones de los l\\u00edmites para evitar da\\u00f1os en la memoria.\"}]",
      "id": "CVE-2021-47148",
      "lastModified": "2024-12-12T14:35:05.817",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 7.8, \"baseSeverity\": \"HIGH\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 1.8, \"impactScore\": 5.9}]}",
      "published": "2024-03-25T09:15:09.150",
      "references": "[{\"url\": \"https://git.kernel.org/stable/c/389146bc6d2bbb20714d06624b74856320ce40f7\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\", \"tags\": [\"Patch\"]}, {\"url\": \"https://git.kernel.org/stable/c/e5cc361e21648b75f935f9571d4003aaee480214\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\", \"tags\": [\"Patch\"]}, {\"url\": \"https://git.kernel.org/stable/c/389146bc6d2bbb20714d06624b74856320ce40f7\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\"]}, {\"url\": \"https://git.kernel.org/stable/c/e5cc361e21648b75f935f9571d4003aaee480214\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\"]}]",
      "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "vulnStatus": "Analyzed",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-787\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2021-47148\",\"sourceIdentifier\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"published\":\"2024-03-25T09:15:09.150\",\"lastModified\":\"2024-12-12T14:35:05.817\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In the Linux kernel, the following vulnerability has been resolved:\\n\\nocteontx2-pf: fix a buffer overflow in otx2_set_rxfh_context()\\n\\nThis function is called from ethtool_set_rxfh() and \\\"*rss_context\\\"\\ncomes from the user.  Add some bounds checking to prevent memory\\ncorruption.\"},{\"lang\":\"es\",\"value\":\"En el kernel de Linux se ha resuelto la siguiente vulnerabilidad: octeontx2-pf: corrige un desbordamiento del b\u00fafer en otx2_set_rxfh_context() Esta funci\u00f3n se llama desde ethtool_set_rxfh() y \\\"*rss_context\\\" proviene del usuario. Agregue algunas comprobaciones de los l\u00edmites para evitar da\u00f1os en la memoria.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-787\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.12\",\"versionEndExcluding\":\"5.12.9\",\"matchCriteriaId\":\"3B1CFA77-6B5E-430C-AC49-3B3508F2D903\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:5.13:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"0CBAD0FC-C281-4666-AB2F-F8E6E1165DF7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:5.13:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"96AC23B2-D46A-49D9-8203-8E1BEDCA8532\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:5.13:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"DA610E30-717C-4700-9F77-A3C9244F3BFD\"}]}]}],\"references\":[{\"url\":\"https://git.kernel.org/stable/c/389146bc6d2bbb20714d06624b74856320ce40f7\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/e5cc361e21648b75f935f9571d4003aaee480214\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/389146bc6d2bbb20714d06624b74856320ce40f7\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/e5cc361e21648b75f935f9571d4003aaee480214\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://git.kernel.org/stable/c/389146bc6d2bbb20714d06624b74856320ce40f7\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/e5cc361e21648b75f935f9571d4003aaee480214\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-04T05:24:40.199Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2021-47148\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-06-26T20:36:23.128673Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-06-26T20:36:26.803Z\"}}], \"cna\": {\"title\": \"octeontx2-pf: fix a buffer overflow in otx2_set_rxfh_context()\", \"affected\": [{\"repo\": \"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\", \"vendor\": \"Linux\", \"product\": \"Linux\", \"versions\": [{\"status\": \"affected\", \"version\": \"81a4362016e7d8b17031fe1aa43cdb58a7f0f163\", \"lessThan\": \"389146bc6d2bbb20714d06624b74856320ce40f7\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"81a4362016e7d8b17031fe1aa43cdb58a7f0f163\", \"lessThan\": \"e5cc361e21648b75f935f9571d4003aaee480214\", \"versionType\": \"git\"}], \"programFiles\": [\"drivers/net/ethernet/marvell/octeontx2/nic/otx2_ethtool.c\"], \"defaultStatus\": \"unaffected\"}, {\"repo\": \"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\", \"vendor\": \"Linux\", \"product\": \"Linux\", \"versions\": [{\"status\": \"affected\", \"version\": \"5.12\"}, {\"status\": \"unaffected\", \"version\": \"0\", \"lessThan\": \"5.12\", \"versionType\": \"semver\"}, {\"status\": \"unaffected\", \"version\": \"5.12.9\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"5.12.*\"}, {\"status\": \"unaffected\", \"version\": \"5.13\", \"versionType\": \"original_commit_for_fix\", \"lessThanOrEqual\": \"*\"}], \"programFiles\": [\"drivers/net/ethernet/marvell/octeontx2/nic/otx2_ethtool.c\"], \"defaultStatus\": \"affected\"}], \"references\": [{\"url\": \"https://git.kernel.org/stable/c/389146bc6d2bbb20714d06624b74856320ce40f7\"}, {\"url\": \"https://git.kernel.org/stable/c/e5cc361e21648b75f935f9571d4003aaee480214\"}], \"x_generator\": {\"engine\": \"bippy-5f407fcff5a0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"In the Linux kernel, the following vulnerability has been resolved:\\n\\nocteontx2-pf: fix a buffer overflow in otx2_set_rxfh_context()\\n\\nThis function is called from ethtool_set_rxfh() and \\\"*rss_context\\\"\\ncomes from the user.  Add some bounds checking to prevent memory\\ncorruption.\"}], \"providerMetadata\": {\"orgId\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\", \"shortName\": \"Linux\", \"dateUpdated\": \"2024-12-19T07:36:09.408Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2021-47148\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-12-19T07:36:09.408Z\", \"dateReserved\": \"2024-03-04T18:12:48.845Z\", \"assignerOrgId\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\", \"datePublished\": \"2024-03-25T09:07:44.472Z\", \"assignerShortName\": \"Linux\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

BDU:2025-07314

Vulnerability from fstec - Published: 12.05.2021

Title

Уязвимость функции otx2_set_rxfh_context() модуля drivers/net/ethernet/marvell/octeontx2/nic/otx2_ethtool.c - драйвера поддержки сетевых адаптеров Ethernet Marvell ядра операционной системы Linux, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации

Description

Уязвимость функции otx2_set_rxfh_context() модуля drivers/net/ethernet/marvell/octeontx2/nic/otx2_ethtool.c - драйвера поддержки сетевых адаптеров Ethernet Marvell ядра операционной системы Linux связана с записью за границами буфера. Эксплуатация уязвимости может позволить нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации

Severity ?


                    
                      AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Vendor

Сообщество свободного программного обеспечения

Software Name

Linux

Software Version

от 5.12 до 5.12.8 включительно (Linux)

Possible Mitigations

В условиях отсутствия обновлений безопасности от производителя рекомендуется придерживаться "Рекомендаций по безопасной настройке операционных систем LINUX", изложенных в методическом документе ФСТЭК России, утверждённом 25 декабря 2022 года. Использование рекомендаций: Для Linux: https://git.kernel.org/stable/c/e5cc361e21648b75f935f9571d4003aaee480214 https://git.kernel.org/stable/c/389146bc6d2bbb20714d06624b74856320ce40f7 https://lore.kernel.org/linux-cve-announce/2024032559-CVE-2021-47148-502f@gregkh/ https://kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.12.9

Reference

https://git.kernel.org/stable/c/e5cc361e21648b75f935f9571d4003aaee480214 https://git.kernel.org/stable/c/389146bc6d2bbb20714d06624b74856320ce40f7 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-47148 https://lore.kernel.org/linux-cve-announce/2024032559-CVE-2021-47148-502f@gregkh/ https://www.cve.org/CVERecord?id=CVE-2021-47148 https://kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.12.9

CWE

CWE-787

JSON

To clipboard

{
  "CVSS 2.0": "AV:L/AC:L/Au:S/C:C/I:C/A:C",
  "CVSS 3.0": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
  "CVSS 4.0": null,
  "remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
  "remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
  "\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "\u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
  "\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "\u043e\u0442 5.12 \u0434\u043e 5.12.8 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (Linux)",
  "\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0412 \u0443\u0441\u043b\u043e\u0432\u0438\u044f\u0445 \u043e\u0442\u0441\u0443\u0442\u0441\u0442\u0432\u0438\u044f \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0439 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u043e\u0442 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442\u0441\u044f \u043f\u0440\u0438\u0434\u0435\u0440\u0436\u0438\u0432\u0430\u0442\u044c\u0441\u044f \"\u0420\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u043e \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0439 \u043d\u0430\u0441\u0442\u0440\u043e\u0439\u043a\u0435 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c LINUX\", \u0438\u0437\u043b\u043e\u0436\u0435\u043d\u043d\u044b\u0445 \u0432 \u043c\u0435\u0442\u043e\u0434\u0438\u0447\u0435\u0441\u043a\u043e\u043c \u0434\u043e\u043a\u0443\u043c\u0435\u043d\u0442\u0435 \u0424\u0421\u0422\u042d\u041a \u0420\u043e\u0441\u0441\u0438\u0438, \u0443\u0442\u0432\u0435\u0440\u0436\u0434\u0451\u043d\u043d\u043e\u043c 25 \u0434\u0435\u043a\u0430\u0431\u0440\u044f 2022 \u0433\u043e\u0434\u0430.\n\n\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\n\u0414\u043b\u044f Linux:\nhttps://git.kernel.org/stable/c/e5cc361e21648b75f935f9571d4003aaee480214\nhttps://git.kernel.org/stable/c/389146bc6d2bbb20714d06624b74856320ce40f7\nhttps://lore.kernel.org/linux-cve-announce/2024032559-CVE-2021-47148-502f@gregkh/\nhttps://kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.12.9",
  "\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "12.05.2021",
  "\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "23.06.2025",
  "\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "23.06.2025",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2025-07314",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2021-47148",
  "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
  "\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
  "\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Linux",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "\u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Linux \u043e\u0442 5.12 \u0434\u043e 5.12.8 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e ",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0444\u0443\u043d\u043a\u0446\u0438\u0438 otx2_set_rxfh_context() \u043c\u043e\u0434\u0443\u043b\u044f drivers/net/ethernet/marvell/octeontx2/nic/otx2_ethtool.c - \u0434\u0440\u0430\u0439\u0432\u0435\u0440\u0430 \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u0438 \u0441\u0435\u0442\u0435\u0432\u044b\u0445 \u0430\u0434\u0430\u043f\u0442\u0435\u0440\u043e\u0432 Ethernet Marvell \u044f\u0434\u0440\u0430 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b Linux, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043e\u043a\u0430\u0437\u0430\u0442\u044c \u0432\u043e\u0437\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0435 \u043d\u0430 \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u0441\u0442\u044c, \u0446\u0435\u043b\u043e\u0441\u0442\u043d\u043e\u0441\u0442\u044c \u0438 \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u043e\u0441\u0442\u044c \u0437\u0430\u0449\u0438\u0449\u0430\u0435\u043c\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438",
  "\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u0417\u0430\u043f\u0438\u0441\u044c \u0437\u0430 \u0433\u0440\u0430\u043d\u0438\u0446\u0430\u043c\u0438 \u0431\u0443\u0444\u0435\u0440\u0430 (CWE-787)",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0444\u0443\u043d\u043a\u0446\u0438\u0438 otx2_set_rxfh_context() \u043c\u043e\u0434\u0443\u043b\u044f drivers/net/ethernet/marvell/octeontx2/nic/otx2_ethtool.c - \u0434\u0440\u0430\u0439\u0432\u0435\u0440\u0430 \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u0438 \u0441\u0435\u0442\u0435\u0432\u044b\u0445 \u0430\u0434\u0430\u043f\u0442\u0435\u0440\u043e\u0432 Ethernet Marvell \u044f\u0434\u0440\u0430 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b Linux \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u0437\u0430\u043f\u0438\u0441\u044c\u044e \u0437\u0430 \u0433\u0440\u0430\u043d\u0438\u0446\u0430\u043c\u0438 \u0431\u0443\u0444\u0435\u0440\u0430. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043e\u043a\u0430\u0437\u0430\u0442\u044c \u0432\u043e\u0437\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0435 \u043d\u0430 \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u0441\u0442\u044c, \u0446\u0435\u043b\u043e\u0441\u0442\u043d\u043e\u0441\u0442\u044c \u0438 \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u043e\u0441\u0442\u044c \u0437\u0430\u0449\u0438\u0449\u0430\u0435\u043c\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438",
  "\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
  "\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
  "\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0430\u043c\u0438 \u0434\u0430\u043d\u043d\u044b\u0445",
  "\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://git.kernel.org/stable/c/e5cc361e21648b75f935f9571d4003aaee480214\nhttps://git.kernel.org/stable/c/389146bc6d2bbb20714d06624b74856320ce40f7\nhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-47148\nhttps://lore.kernel.org/linux-cve-announce/2024032559-CVE-2021-47148-502f@gregkh/\nhttps://www.cve.org/CVERecord?id=CVE-2021-47148\nhttps://kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.12.9",
  "\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
  "\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430",
  "\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-787",
  "\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 6,8)\n\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.1 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,8)"
}

FKIE_CVE-2021-47148

Vulnerability from fkie_nvd - Published: 2024-03-25 09:15 - Updated: 2024-12-12 14:35

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

References

URL	Tags
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/389146bc6d2bbb20714d06624b74856320ce40f7	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/e5cc361e21648b75f935f9571d4003aaee480214	Patch
af854a3a-2127-422b-91ae-364da2661108	https://git.kernel.org/stable/c/389146bc6d2bbb20714d06624b74856320ce40f7	Patch
af854a3a-2127-422b-91ae-364da2661108	https://git.kernel.org/stable/c/e5cc361e21648b75f935f9571d4003aaee480214	Patch

Impacted products

Vendor	Product	Version
linux	linux_kernel	*
linux	linux_kernel	5.13
linux	linux_kernel	5.13
linux	linux_kernel	5.13

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "3B1CFA77-6B5E-430C-AC49-3B3508F2D903",
              "versionEndExcluding": "5.12.9",
              "versionStartIncluding": "5.12",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:5.13:rc1:*:*:*:*:*:*",
              "matchCriteriaId": "0CBAD0FC-C281-4666-AB2F-F8E6E1165DF7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:5.13:rc2:*:*:*:*:*:*",
              "matchCriteriaId": "96AC23B2-D46A-49D9-8203-8E1BEDCA8532",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:5.13:rc3:*:*:*:*:*:*",
              "matchCriteriaId": "DA610E30-717C-4700-9F77-A3C9244F3BFD",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: fix a buffer overflow in otx2_set_rxfh_context()\n\nThis function is called from ethtool_set_rxfh() and \"*rss_context\"\ncomes from the user.  Add some bounds checking to prevent memory\ncorruption."
    },
    {
      "lang": "es",
      "value": "En el kernel de Linux se ha resuelto la siguiente vulnerabilidad: octeontx2-pf: corrige un desbordamiento del b\u00fafer en otx2_set_rxfh_context() Esta funci\u00f3n se llama desde ethtool_set_rxfh() y \"*rss_context\" proviene del usuario. Agregue algunas comprobaciones de los l\u00edmites para evitar da\u00f1os en la memoria."
    }
  ],
  "id": "CVE-2021-47148",
  "lastModified": "2024-12-12T14:35:05.817",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2024-03-25T09:15:09.150",
  "references": [
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/389146bc6d2bbb20714d06624b74856320ce40f7"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/e5cc361e21648b75f935f9571d4003aaee480214"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/389146bc6d2bbb20714d06624b74856320ce40f7"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/e5cc361e21648b75f935f9571d4003aaee480214"
    }
  ],
  "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-787"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-6X4Q-XMHW-JMPW

Vulnerability from github – Published: 2024-03-25 09:32 – Updated: 2024-12-12 15:31

Details

In the Linux kernel, the following vulnerability has been resolved:

octeontx2-pf: fix a buffer overflow in otx2_set_rxfh_context()

This function is called from ethtool_set_rxfh() and "*rss_context" comes from the user. Add some bounds checking to prevent memory corruption.

Severity ?

7.8 (High)


                  
                    CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2021-47148"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-787"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2024-03-25T09:15:09Z",
    "severity": "HIGH"
  },
  "details": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: fix a buffer overflow in otx2_set_rxfh_context()\n\nThis function is called from ethtool_set_rxfh() and \"*rss_context\"\ncomes from the user.  Add some bounds checking to prevent memory\ncorruption.",
  "id": "GHSA-6x4q-xmhw-jmpw",
  "modified": "2024-12-12T15:31:06Z",
  "published": "2024-03-25T09:32:35Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47148"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/389146bc6d2bbb20714d06624b74856320ce40f7"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/e5cc361e21648b75f935f9571d4003aaee480214"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

GSD-2021-47148

Vulnerability from gsd - Updated: 2024-03-05 06:03

Details

Aliases

CVE-2021-47148

JSON

To clipboard

{
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2021-47148"
      ],
      "details": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: fix a buffer overflow in otx2_set_rxfh_context()\n\nThis function is called from ethtool_set_rxfh() and \"*rss_context\"\ncomes from the user.  Add some bounds checking to prevent memory\ncorruption.",
      "id": "GSD-2021-47148",
      "modified": "2024-03-05T06:03:55.191618Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@kernel.org",
        "ID": "CVE-2021-47148",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "Linux",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "81a4362016e7",
                          "version_value": "389146bc6d2b"
                        },
                        {
                          "version_value": "not down converted",
                          "x_cve_json_5_version_data": {
                            "defaultStatus": "affected",
                            "versions": [
                              {
                                "status": "affected",
                                "version": "5.12"
                              },
                              {
                                "lessThan": "5.12",
                                "status": "unaffected",
                                "version": "0",
                                "versionType": "custom"
                              },
                              {
                                "lessThanOrEqual": "5.12.*",
                                "status": "unaffected",
                                "version": "5.12.9",
                                "versionType": "custom"
                              },
                              {
                                "lessThanOrEqual": "*",
                                "status": "unaffected",
                                "version": "5.13",
                                "versionType": "original_commit_for_fix"
                              }
                            ]
                          }
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Linux"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: fix a buffer overflow in otx2_set_rxfh_context()\n\nThis function is called from ethtool_set_rxfh() and \"*rss_context\"\ncomes from the user.  Add some bounds checking to prevent memory\ncorruption."
          }
        ]
      },
      "generator": {
        "engine": "bippy-b4257b672505"
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://git.kernel.org/stable/c/389146bc6d2bbb20714d06624b74856320ce40f7",
            "refsource": "MISC",
            "url": "https://git.kernel.org/stable/c/389146bc6d2bbb20714d06624b74856320ce40f7"
          },
          {
            "name": "https://git.kernel.org/stable/c/e5cc361e21648b75f935f9571d4003aaee480214",
            "refsource": "MISC",
            "url": "https://git.kernel.org/stable/c/e5cc361e21648b75f935f9571d4003aaee480214"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "cve": {
        "descriptions": [
          {
            "lang": "en",
            "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: fix a buffer overflow in otx2_set_rxfh_context()\n\nThis function is called from ethtool_set_rxfh() and \"*rss_context\"\ncomes from the user.  Add some bounds checking to prevent memory\ncorruption."
          },
          {
            "lang": "es",
            "value": "En el kernel de Linux se ha resuelto la siguiente vulnerabilidad: octeontx2-pf: corrige un desbordamiento del b\u00fafer en otx2_set_rxfh_context() Esta funci\u00f3n se llama desde ethtool_set_rxfh() y \"*rss_context\" proviene del usuario. Agregue algunas comprobaciones de los l\u00edmites para evitar da\u00f1os en la memoria."
          }
        ],
        "id": "CVE-2021-47148",
        "lastModified": "2024-03-25T13:47:14.087",
        "metrics": {},
        "published": "2024-03-25T09:15:09.150",
        "references": [
          {
            "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
            "url": "https://git.kernel.org/stable/c/389146bc6d2bbb20714d06624b74856320ce40f7"
          },
          {
            "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
            "url": "https://git.kernel.org/stable/c/e5cc361e21648b75f935f9571d4003aaee480214"
          }
        ],
        "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "vulnStatus": "Awaiting Analysis"
      }
    }
  }
}

WID-SEC-W-2024-0699

Vulnerability from csaf_certbund - Published: 2024-03-24 23:00 - Updated: 2025-06-17 22:00

Summary

Linux-Kernel: Mehrere Schwachstellen ermöglichen Denial of Service und unspezifische Angriffe

Severity

Mittel

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Der Kernel stellt den Kern des Linux Betriebssystems dar.

Angriff: Ein lokaler Angreifer kann mehrere Schwachstellen im Linux-Kernel ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen und einen nicht spezifizierten Angriff durchzuführen.

Betroffene Betriebssysteme: - Linux

CVE-2021-47136

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47137

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47138

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47139

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47140

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47141

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47142

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47143

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47144

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47145

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47146

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47147

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47148

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47149

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47150

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47151

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47152

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47153

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47158

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47159

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47160

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47161

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47162

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47163

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47164

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47165

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47166

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47167

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47168

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47169

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47170

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47171

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47172

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47173

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47174

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47175

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47176

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47177

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47178

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47179

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

CVE-2021-47180

Affected products

Known affected 10 products

Product	Identifier	Version
EMC Avamar EMC	`cpe:/a:emc:avamar:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell NetWorker Dell / NetWorker	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Dell NetWorker <19.11 Dell / NetWorker		<19.11
IBM Spectrum Protect Plus <10.1.16.3 IBM / Spectrum Protect Plus		<10.1.16.3

References

85 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://nvd.nist.gov/vuln/detail/CVE-2021-47136	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47137	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47138	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47139	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47140	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47141	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47142	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47143	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47144	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47145	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47146	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47147	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47148	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47149	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47150	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47151	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47152	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47153	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47154	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47155	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47156	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47157	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47158	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47159	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47160	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47161	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47162	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47163	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47164	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47165	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47166	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47167	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47168	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47169	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47170	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47171	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47172	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47173	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47174	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47175	external
https://nvd.nist.gov/vuln/detail/CVE-2021-47176	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://access.redhat.com/errata/RHSA-2024:3618	external
https://access.redhat.com/errata/RHSA-2024:3627	external
https://linux.oracle.com/errata/ELSA-2024-3618.html	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://www.dell.com/support/kbdoc/de-de/00022663…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://www.ibm.com/support/pages/node/7162077	external
https://www.dell.com/support/kbdoc/de-de/00022757…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.opensuse.org/archives/list/security…	external
https://ubuntu.com/security/notices/USN-6976-1	external
https://linux.oracle.com/errata/ELSA-2024-12606.html	external
https://access.redhat.com/errata/RHSA-2024:6297	external
https://oss.oracle.com/pipermail/oraclevm-errata/…	external
https://www.ibm.com/support/pages/node/7169778	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://alas.aws.amazon.com/AL2/ALAS-2025-2775.html	external
https://ubuntu.com/security/notices/USN-7496-1	external
https://ubuntu.com/security/notices/USN-7496-2	external
https://ubuntu.com/security/notices/USN-7496-4	external
https://ubuntu.com/security/notices/USN-7496-3	external
https://ubuntu.com/security/notices/USN-7496-5	external
https://ubuntu.com/security/notices/USN-7506-3	external
https://ubuntu.com/security/notices/USN-7506-1	external
https://ubuntu.com/security/notices/USN-7506-2	external
https://ubuntu.com/security/notices/USN-7506-4	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Der Kernel stellt den Kern des Linux Betriebssystems dar.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein lokaler Angreifer kann mehrere Schwachstellen im Linux-Kernel ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen und einen nicht spezifizierten Angriff durchzuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-0699 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0699.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-0699 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0699"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47136"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47137"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47138"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47139"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47140"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47141"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47142"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47143"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47144"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47145"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47146"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47147"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47148"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47149"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47150"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47151"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47152"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47153"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47154"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47155"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47156"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47157"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47158"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47159"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47160"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47161"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47162"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47163"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47164"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47165"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47166"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47167"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47168"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47169"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47170"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47171"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47172"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47173"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47174"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47175"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47176"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1454-1 vom 2024-04-26",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018431.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1648-1 vom 2024-05-14",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018524.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1643-1 vom 2024-05-14",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018529.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1646-1 vom 2024-05-14",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018526.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1648-2 vom 2024-05-21",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018572.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1870-1 vom 2024-05-30",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018634.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:3618 vom 2024-06-05",
        "url": "https://access.redhat.com/errata/RHSA-2024:3618"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:3627 vom 2024-06-05",
        "url": "https://access.redhat.com/errata/RHSA-2024:3627"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2024-3618 vom 2024-06-06",
        "url": "https://linux.oracle.com/errata/ELSA-2024-3618.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1979-1 vom 2024-06-11",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-June/018685.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1983-1 vom 2024-06-11",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-June/018700.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:2184-1 vom 2024-06-24",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-June/018807.html"
      },
      {
        "category": "external",
        "summary": "Dell Security Advisory DSA-2024-022 vom 2024-07-03",
        "url": "https://www.dell.com/support/kbdoc/de-de/000226633/dsa-2024-022-security-update-for-dell-networker-vproxy-multiple-component-vulnerabilities"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:2493-1 vom 2024-07-16",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-July/018984.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:2561-1 vom 2024-07-18",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-July/019001.html"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7162077 vom 2024-07-31",
        "url": "https://www.ibm.com/support/pages/node/7162077"
      },
      {
        "category": "external",
        "summary": "Dell Security Advisory DSA-2024-348 vom 2024-08-06",
        "url": "https://www.dell.com/support/kbdoc/de-de/000227573/dsa-2024-348-security-update-for-dell-avamar-dell-networker-virtual-edition-nve-and-dell-powerprotect-dp-series-appliance-dell-integrated-data-protection-appliance-idpa-security-update-for-multiple-vulnerabilities"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:2901-1 vom 2024-08-14",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-August/019194.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1465-1 vom 2024-08-19",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-August/019273.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1489-1 vom 2024-08-19",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/D5LYDXV5ACGHUYO5XWLWD5VAOA5HLJ7U/"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6976-1 vom 2024-08-22",
        "url": "https://ubuntu.com/security/notices/USN-6976-1"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2024-12606 vom 2024-09-03",
        "url": "https://linux.oracle.com/errata/ELSA-2024-12606.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:6297 vom 2024-09-04",
        "url": "https://access.redhat.com/errata/RHSA-2024:6297"
      },
      {
        "category": "external",
        "summary": "ORACLE OVMSA-2024-0011 vom 2024-09-04",
        "url": "https://oss.oracle.com/pipermail/oraclevm-errata/2024-September/001099.html"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7169778 vom 2024-09-24",
        "url": "https://www.ibm.com/support/pages/node/7169778"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:4100-1 vom 2024-11-28",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-November/019864.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:4367-1 vom 2024-12-17",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-December/020025.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:0034-1 vom 2025-01-08",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020071.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:0035-1 vom 2025-01-08",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020070.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS-2025-2775 vom 2025-03-07",
        "url": "https://alas.aws.amazon.com/AL2/ALAS-2025-2775.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7496-1 vom 2025-05-07",
        "url": "https://ubuntu.com/security/notices/USN-7496-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7496-2 vom 2025-05-07",
        "url": "https://ubuntu.com/security/notices/USN-7496-2"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7496-4 vom 2025-05-07",
        "url": "https://ubuntu.com/security/notices/USN-7496-4"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7496-3 vom 2025-05-07",
        "url": "https://ubuntu.com/security/notices/USN-7496-3"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7496-5 vom 2025-05-07",
        "url": "https://ubuntu.com/security/notices/USN-7496-5"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7506-3 vom 2025-05-12",
        "url": "https://ubuntu.com/security/notices/USN-7506-3"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7506-1 vom 2025-05-12",
        "url": "https://ubuntu.com/security/notices/USN-7506-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7506-2 vom 2025-05-12",
        "url": "https://ubuntu.com/security/notices/USN-7506-2"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7506-4 vom 2025-05-13",
        "url": "https://ubuntu.com/security/notices/USN-7506-4"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:1574-1 vom 2025-05-16",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-May/020835.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:01633-1 vom 2025-05-21",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-May/020864.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:01983-1 vom 2025-06-17",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021538.html"
      }
    ],
    "source_lang": "en-US",
    "title": "Linux-Kernel: Mehrere Schwachstellen erm\u00f6glichen Denial of Service und unspezifische Angriffe",
    "tracking": {
      "current_release_date": "2025-06-17T22:00:00.000+00:00",
      "generator": {
        "date": "2025-06-18T08:45:43.200+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.12"
        }
      },
      "id": "WID-SEC-W-2024-0699",
      "initial_release_date": "2024-03-24T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-03-24T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2024-04-28T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-05-14T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-05-21T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-05-30T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-06-04T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-06-06T22:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2024-06-10T22:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-06-11T22:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-06-24T22:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-07-02T22:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von Dell aufgenommen"
        },
        {
          "date": "2024-07-15T22:00:00.000+00:00",
          "number": "12",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-07-18T22:00:00.000+00:00",
          "number": "13",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-07-31T22:00:00.000+00:00",
          "number": "14",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2024-08-05T22:00:00.000+00:00",
          "number": "15",
          "summary": "Neue Updates von Dell aufgenommen"
        },
        {
          "date": "2024-08-14T22:00:00.000+00:00",
          "number": "16",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-08-19T22:00:00.000+00:00",
          "number": "17",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-08-21T22:00:00.000+00:00",
          "number": "18",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2024-09-02T22:00:00.000+00:00",
          "number": "19",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2024-09-04T22:00:00.000+00:00",
          "number": "20",
          "summary": "Neue Updates von Red Hat und ORACLE aufgenommen"
        },
        {
          "date": "2024-09-23T22:00:00.000+00:00",
          "number": "21",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2024-11-28T23:00:00.000+00:00",
          "number": "22",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-12-17T23:00:00.000+00:00",
          "number": "23",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-01-08T23:00:00.000+00:00",
          "number": "24",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-03-09T23:00:00.000+00:00",
          "number": "25",
          "summary": "Neue Updates von Amazon aufgenommen"
        },
        {
          "date": "2025-05-06T22:00:00.000+00:00",
          "number": "26",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2025-05-12T22:00:00.000+00:00",
          "number": "27",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2025-05-18T22:00:00.000+00:00",
          "number": "28",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-05-21T22:00:00.000+00:00",
          "number": "29",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-06-17T22:00:00.000+00:00",
          "number": "30",
          "summary": "Neue Updates von SUSE aufgenommen"
        }
      ],
      "status": "final",
      "version": "30"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Amazon Linux 2",
            "product": {
              "name": "Amazon Linux 2",
              "product_id": "398363",
              "product_identification_helper": {
                "cpe": "cpe:/o:amazon:linux_2:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Amazon"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Dell NetWorker",
                "product": {
                  "name": "Dell NetWorker",
                  "product_id": "T024663",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:dell:networker:-"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c19.11",
                "product": {
                  "name": "Dell NetWorker \u003c19.11",
                  "product_id": "T035785"
                }
              },
              {
                "category": "product_version",
                "name": "19.11",
                "product": {
                  "name": "Dell NetWorker 19.11",
                  "product_id": "T035785-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:dell:networker:19.11"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "NetWorker"
          }
        ],
        "category": "vendor",
        "name": "Dell"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "EMC Avamar",
            "product": {
              "name": "EMC Avamar",
              "product_id": "T014381",
              "product_identification_helper": {
                "cpe": "cpe:/a:emc:avamar:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "EMC"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c10.1.16.3",
                "product": {
                  "name": "IBM Spectrum Protect Plus \u003c10.1.16.3",
                  "product_id": "T037795"
                }
              },
              {
                "category": "product_version",
                "name": "10.1.16.3",
                "product": {
                  "name": "IBM Spectrum Protect Plus 10.1.16.3",
                  "product_id": "T037795-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:spectrum_protect_plus:10.1.16.3"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Spectrum Protect Plus"
          }
        ],
        "category": "vendor",
        "name": "IBM"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Open Source Linux Kernel",
            "product": {
              "name": "Open Source Linux Kernel",
              "product_id": "T033646",
              "product_identification_helper": {
                "cpe": "cpe:/o:linux:linux_kernel:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T004914",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Red Hat Enterprise Linux",
            "product": {
              "name": "Red Hat Enterprise Linux",
              "product_id": "67646",
              "product_identification_helper": {
                "cpe": "cpe:/o:redhat:enterprise_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Ubuntu Linux",
            "product": {
              "name": "Ubuntu Linux",
              "product_id": "T000126",
              "product_identification_helper": {
                "cpe": "cpe:/o:canonical:ubuntu_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Ubuntu"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-47136",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47136"
    },
    {
      "cve": "CVE-2021-47137",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47137"
    },
    {
      "cve": "CVE-2021-47138",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47138"
    },
    {
      "cve": "CVE-2021-47139",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47139"
    },
    {
      "cve": "CVE-2021-47140",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47140"
    },
    {
      "cve": "CVE-2021-47141",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47141"
    },
    {
      "cve": "CVE-2021-47142",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47142"
    },
    {
      "cve": "CVE-2021-47143",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47143"
    },
    {
      "cve": "CVE-2021-47144",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47144"
    },
    {
      "cve": "CVE-2021-47145",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47145"
    },
    {
      "cve": "CVE-2021-47146",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47146"
    },
    {
      "cve": "CVE-2021-47147",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47147"
    },
    {
      "cve": "CVE-2021-47148",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47148"
    },
    {
      "cve": "CVE-2021-47149",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47149"
    },
    {
      "cve": "CVE-2021-47150",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47150"
    },
    {
      "cve": "CVE-2021-47151",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47151"
    },
    {
      "cve": "CVE-2021-47152",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47152"
    },
    {
      "cve": "CVE-2021-47153",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47153"
    },
    {
      "cve": "CVE-2021-47158",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47158"
    },
    {
      "cve": "CVE-2021-47159",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47159"
    },
    {
      "cve": "CVE-2021-47160",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47160"
    },
    {
      "cve": "CVE-2021-47161",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47161"
    },
    {
      "cve": "CVE-2021-47162",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47162"
    },
    {
      "cve": "CVE-2021-47163",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47163"
    },
    {
      "cve": "CVE-2021-47164",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47164"
    },
    {
      "cve": "CVE-2021-47165",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47165"
    },
    {
      "cve": "CVE-2021-47166",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47166"
    },
    {
      "cve": "CVE-2021-47167",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47167"
    },
    {
      "cve": "CVE-2021-47168",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47168"
    },
    {
      "cve": "CVE-2021-47169",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47169"
    },
    {
      "cve": "CVE-2021-47170",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47170"
    },
    {
      "cve": "CVE-2021-47171",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47171"
    },
    {
      "cve": "CVE-2021-47172",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47172"
    },
    {
      "cve": "CVE-2021-47173",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47173"
    },
    {
      "cve": "CVE-2021-47174",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47174"
    },
    {
      "cve": "CVE-2021-47175",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47175"
    },
    {
      "cve": "CVE-2021-47176",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47176"
    },
    {
      "cve": "CVE-2021-47177",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47177"
    },
    {
      "cve": "CVE-2021-47178",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47178"
    },
    {
      "cve": "CVE-2021-47179",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47179"
    },
    {
      "cve": "CVE-2021-47180",
      "product_status": {
        "known_affected": [
          "T014381",
          "T002207",
          "67646",
          "T000126",
          "T033646",
          "T024663",
          "398363",
          "T004914",
          "T035785",
          "T037795"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2021-47180"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2021-47148 (GCVE-0-2021-47148)

BDU:2025-07314

FKIE_CVE-2021-47148

GHSA-6X4Q-XMHW-JMPW

GSD-2021-47148

WID-SEC-W-2024-0699

Tags

Sightings

Nomenclature