CVE-2021-47649

Feb. 26, 2025, 6:37 a.m.

None
No Score

Description

In the Linux kernel, the following vulnerability has been resolved: udmabuf: validate ubuf->pagecount Syzbot has reported GPF in sg_alloc_append_table_from_pages(). The problem was in ubuf->pages == ZERO_PTR. ubuf->pagecount is calculated from arguments passed from user-space. If user creates udmabuf with list.size == 0 then ubuf->pagecount will be also equal to zero; it causes kmalloc_array() to return ZERO_PTR. Fix it by validating ubuf->pagecount before passing it to kmalloc_array().

Product(s) Impacted

Product Versions
Linux kernel
  • []

Weaknesses

Common security weaknesses mapped to this vulnerability.

References

https://git.kernel.org/stable/c/2b6dd600dd72573c23ea180b5b0b2f1813405882
https://git.kernel.org/stable/c/5d50f851dd307c07ca5591297093f19967c834a9
https://git.kernel.org/stable/c/811b667cefbea9cb7511a874b169d6a92907137e
https://git.kernel.org/stable/c/9e9b4a269f84d3230f2af84ff42322db676440d9
https://git.kernel.org/stable/c/a3728d32fc61eb0fe283cb8ff60b2c8f751e2202
https://git.kernel.org/stable/c/b267a8118c2b171bf7d67b90ed64154eeab9fae0

Tags

416baaa9-dc9f-4396-8d5f-8c081fb06d67
2025-02-26
CVE-2021-47649

Timeline

Published: Feb. 26, 2025, 6:37 a.m.
Last Modified: Feb. 26, 2025, 6:37 a.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.