CVE-2021-47547

Published: May 24, 2024Modified: Apr 1, 2025

4.4

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L

Exploitability: 1.8 / Impact: 2.5

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

In the Linux kernel, the following vulnerability has been resolved: net: tulip: de4x5: fix the problem that the array 'lp->phy[8]' may be out of bound In line 5001, if all id in the array 'lp->phy[8]' is not 0, when the 'for' end, the 'k' is 8. At this time, the array 'lp->phy[8]' may be out of bound.

Affected (8)

Products: Linux: Linux Kernel

1 product

Configuration A

8 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	Before 4.4.294
Linux Linux Kernel	From 4.10 to 4.14.257
Linux Linux Kernel	From 4.15 to 4.19.220
Linux Linux Kernel	From 4.20 to 5.4.164
Linux Linux Kernel	From 4.5 to 4.9.292
Linux Linux Kernel	From 5.11 to 5.15.7
Linux Linux Kernel	From 5.5 to 5.10.84
Linux Linux Kernel	Version 5.16 rc1

Related CWEs

Improper Validation of Array Index

The product uses untrusted input when calculating or using an array index, but the product does not validate or incorrectly validates the index to ensure the index references a valid position within the array.

References (16)

https://git.kernel.org/stable/c/12f907cb11576b8cd0b1d95a16d1f10ed5bb7237

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/142ead3dc70411bd5977e8c47a6d8bf22287b3f8

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/2c1a6a9a011d622a7c61324a97a49801ba425eff

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/61217be886b5f7402843677e4be7e7e83de9cb41

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/77ff166909458646e66450e42909e0adacc99049

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/d3dedaa5a601107cfedda087209772c76e364d58

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/ec5bd0aef1cec96830d0c7e06d3597d9e786cc98

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/f059fa40f0fcc6bc7a12e0f2a2504e9a4ff74f1f

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/12f907cb11576b8cd0b1d95a16d1f10ed5bb7237

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/142ead3dc70411bd5977e8c47a6d8bf22287b3f8

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/2c1a6a9a011d622a7c61324a97a49801ba425eff

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/61217be886b5f7402843677e4be7e7e83de9cb41

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/77ff166909458646e66450e42909e0adacc99049

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/d3dedaa5a601107cfedda087209772c76e364d58

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/ec5bd0aef1cec96830d0c7e06d3597d9e786cc98

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/f059fa40f0fcc6bc7a12e0f2a2504e9a4ff74f1f

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

Timeline

No history available yet.