CVE-2021-42327 — Out-of-bounds Write in Linux
Severity
7.8HIGHNVD
NVD6.7OSV6.7OSV6.5OSV4.7
EPSS
0.3%
top 49.69%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedOct 21
Latest updateMay 22
Description
dp_link_settings_write in drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm_debugfs.c in the Linux kernel through 5.14.14 allows a heap-based buffer overflow by an attacker who can write a string to the AMD GPU display drivers debug filesystem. There are no checks on size within parse_write_buffer_into_params when it uses the size of copy_from_user to copy a userspace buffer into a 40-byte heap buffer.
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 0.8 | Impact: 5.9
Affected Packages6 packages
▶CVEListV5linux/linux918698d5c2b50433714d2042f55b55b090faa167 — 1336b886b162fdc84708096ea152a61c0e1fc09c+3
Also affects: Debian Linux 11.0, Fedora 35
🔴Vulnerability Details
9OSV▶
CVE-2021-47489: In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix even more out of bound writes from debugfs CVE-2021-42327 was fixe↗2024-05-22
GHSA▶
GHSA-843h-74ff-22vf: In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu: Fix even more out of bound writes from debugfs
CVE-2021-42327 was fi↗2024-05-22
GHSA▶
GHSA-h79r-2wv4-r9g8: dp_link_settings_write in drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm_debugfs↗2022-05-24
OSV▶
linux, linux-aws, linux-aws-5.11, linux-aws-5.13, linux-azure-5.11, linux-gcp, linux-gcp-5.11, linux-hwe-5.13, linux-kvm, linux-oem-5.13, linux-oracle, linux-oracle-5.11, linux-raspi vulnerabilities↗2022-02-03
📋Vendor Advisories
8Red Hat▶
kernel: heap-based buffer overflow in dp_link_settings_write() in drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm_debugfs.c↗2021-10-13