CVE-2021-47101

Updated: 2025-02-04 01:06:29.904013

Description:

In the Linux kernel, the following vulnerability has been resolved: asix: fix uninit-value in asix_mdio_read() asix_read_cmd() may read less than sizeof(smsr) bytes and in this case smsr will be uninitialized. Fail log: BUG: KMSAN: uninit-value in asix_check_host_enable drivers/net/usb/asix_common.c:82 [inline] BUG: KMSAN: uninit-value in asix_check_host_enable drivers/net/usb/asix_common.c:82 [inline] drivers/net/usb/asix_common.c:497 BUG: KMSAN: uninit-value in asix_mdio_read+0x3c1/0xb00 drivers/net/usb/asix_common.c:497 drivers/net/usb/asix_common.c:497 asix_check_host_enable drivers/net/usb/asix_common.c:82 [inline] asix_check_host_enable drivers/net/usb/asix_common.c:82 [inline] drivers/net/usb/asix_common.c:497 asix_mdio_read+0x3c1/0xb00 drivers/net/usb/asix_common.c:497 drivers/net/usb/asix_common.c:497


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0
CVSS Version 3.x HIGH 7.1000000000000005

Status

OS name Project name Version Score Severity Status Errata Last updated

Statement
AlmaLinux 9.2 ESU kernel 5.14.0 7.1 HIGH Released CLSA-2025:1743193221 2025-02-22 01:18:50
CentOS 6 ELS kernel 2.6.32 7.1 HIGH Ignored 2024-09-25 12:27:16
CentOS 7 ELS kernel 3.10.0 7.1 HIGH Ignored 2024-09-25 12:27:16
CentOS 8.4 ELS kernel 4.18.0 7.1 HIGH Ignored 2024-10-09 03:44:07
CentOS 8.5 ELS kernel 4.18.0 7.1 HIGH Ignored 2024-10-09 03:44:07
CentOS Stream 8 ELS kernel 4.18.0 7.1 HIGH Ignored 2024-10-09 03:44:07
CloudLinux 6 ELS kernel 2.6.32 7.1 HIGH Ignored 2024-09-25 12:27:16
CloudLinux 7 ELS kernel 3.10.0 7.1 HIGH Ignored 2024-09-25 12:27:15
Oracle Linux 6 ELS kernel 2.6.32 7.1 HIGH Ignored 2024-09-25 12:27:15
Ubuntu 16.04 ELS linux-hwe 4.15.0 7.1 HIGH Released CLSA-2025:1736444557 2025-01-10 00:54:54
Total: 12