CVE-2021-47489 — Out-of-bounds Write in Kernel

CWE-787 — Out-of-bounds Write6 documents6 sources

Severity

7.8HIGHNVD

OSV6.7

EPSS

0.0%

top 93.82%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Kernel Debian Linux Debian Linux

Timeline

PublishedMay 22

Latest updateMay 23

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix even more out of bound writes from debugfs CVE-2021-42327 was fixed by: commit f23750b5b3d98653b31d4469592935ef6364ad67 Author: Thelford Williams Date: Wed Oct 13 16:04:13 2021 -0400 drm/amdgpu: fix out of bounds write but amdgpu_dm_debugfs.c contains more of the same issue so fix the remaining ones. v2: * Add missing fix in dp_max_bpc_write (Harry Wentland)

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages3 packages

▶NVDlinux/linux_kernel5.10 — 5.10.236+2

▶Debianlinux/linux_kernel< 5.10.237-1+3

▶debiandebian/linux< linux 5.15.3-1 (bookworm)

Also affects: Debian Linux 11.0

Patches

Patch: git.kernel.org ↗Patch: git.kernel.org ↗Patch: git.kernel.org ↗

🔴Vulnerability Details

OSV

CVE-2021-47489: In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix even more out of bound writes from debugfs CVE-2021-42327 was fixe↗2024-05-22

▶

GHSA

GHSA-843h-74ff-22vf: In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix even more out of bound writes from debugfs CVE-2021-42327 was fi↗2024-05-22

▶

📋Vendor Advisories

Red Hat

kernel: drm/amdgpu: Fix even more out of bound writes from debugfs↗2024-05-22

▶

Debian

CVE-2021-47489: linux - In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu:...↗2021

▶

💬Community

Bugzilla

CVE-2021-47489 kernel: drm/amdgpu: Fix even more out of bound writes from debugfs↗2024-05-23

▶