CVE-2021-46919

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: fix wq size store permission state WQ size can only be changed when the device is disabled. Current code allows change when device is enabled but wq is disabled. Change the check to detect device state.

CVSS v3 5.5 MEDIUM

5.5^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://git.kernel.org/stable/c/05b7791c4c4aa8304368fdc55ae911f6b34e7281	Patch
https://git.kernel.org/stable/c/0fff71c5a311e1264988179f7dcc217fda15fadd	Patch
https://git.kernel.org/stable/c/4ecf25595273203010bc8318c4aee60ad64037ae	Patch

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::

History

10 Apr 2024, 14:46

Type	Values Removed	Values Added
CPE		cpe:2.3:o:linux:linux_kernel::::::::
CWE		NVD-CWE-noinfo
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 5.5
References	~~() https://git.kernel.org/stable/c/05b7791c4c4aa8304368fdc55ae911f6b34e7281 -~~	() https://git.kernel.org/stable/c/05b7791c4c4aa8304368fdc55ae911f6b34e7281 - Patch
References	~~() https://git.kernel.org/stable/c/0fff71c5a311e1264988179f7dcc217fda15fadd -~~	() https://git.kernel.org/stable/c/0fff71c5a311e1264988179f7dcc217fda15fadd - Patch
References	~~() https://git.kernel.org/stable/c/4ecf25595273203010bc8318c4aee60ad64037ae -~~	() https://git.kernel.org/stable/c/4ecf25595273203010bc8318c4aee60ad64037ae - Patch
First Time		Linux Linux linux Kernel

27 Feb 2024, 14:20

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-02-27 07:15

Updated : 2024-04-10 14:46

NVD link : CVE-2021-46919

Mitre link : CVE-2021-46919

CVE.ORG link : CVE-2021-46919

JSON object : View

Products Affected

linux

linux_kernel

CWE

NVD-CWE-noinfo

{"id": "CVE-2021-46919", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.5, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 1.8}]}, "published": "2024-02-27T07:15:08.787", "references": [{"url": "https://git.kernel.org/stable/c/05b7791c4c4aa8304368fdc55ae911f6b34e7281", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/0fff71c5a311e1264988179f7dcc217fda15fadd", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/4ecf25595273203010bc8318c4aee60ad64037ae", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: idxd: fix wq size store permission state\n\nWQ size can only be changed when the device is disabled. Current code\nallows change when device is enabled but wq is disabled. Change the check\nto detect device state."}, {"lang": "es", "value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: dmaengine: idxd: corregir el tama\u00f1o de wq estado del permiso de almacenamiento El tama\u00f1o de WQ solo se puede cambiar cuando el dispositivo est\u00e1 deshabilitado. El c\u00f3digo actual permite cambios cuando el dispositivo est\u00e1 habilitado pero wq est\u00e1 deshabilitado. Cambie la verificaci\u00f3n para detectar el estado del dispositivo."}], "lastModified": "2024-04-10T14:46:43.057", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "10B30767-6251-4101-9C1B-5F61DBAFA43A", "versionEndExcluding": "5.10.32", "versionStartIncluding": "5.6.0"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3C5242B9-B5BD-4578-AD66-69DF59D54A14", "versionEndExcluding": "5.11.16", "versionStartIncluding": "5.11.0"}], "operator": "OR"}]}], "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}