CVE-2021-47276 (GCVE-0-2021-47276)

Vulnerability from cvelistv5 – Published: 2024-05-21 14:20 – Updated: 2026-05-11 13:51
VLAI
Title
ftrace: Do not blindly read the ip address in ftrace_bug()
Summary
In the Linux kernel, the following vulnerability has been resolved: ftrace: Do not blindly read the ip address in ftrace_bug() It was reported that a bug on arm64 caused a bad ip address to be used for updating into a nop in ftrace_init(), but the error path (rightfully) returned -EINVAL and not -EFAULT, as the bug caused more than one error to occur. But because -EINVAL was returned, the ftrace_bug() tried to report what was at the location of the ip address, and read it directly. This caused the machine to panic, as the ip was not pointing to a valid memory address. Instead, read the ip address with copy_from_kernel_nofault() to safely access the memory, and if it faults, report that the address faulted, otherwise report what was in that location.
Severity
No CVSS data available.
Assigner
References
Impacted products
Vendor Product Version
Linux Linux Affected: 05736a427f7e16be948ccbf39782bd3a6ae16b14 , < 0bc62e398bbd9e600959e610def5109957437b28 (git)
Affected: 05736a427f7e16be948ccbf39782bd3a6ae16b14 , < 4aedc2bc2b32c93555f47c95610efb89cc1ec09b (git)
Affected: 05736a427f7e16be948ccbf39782bd3a6ae16b14 , < acf671ba79c1feccc3ec7cfdcffead4efcec49e7 (git)
Affected: 05736a427f7e16be948ccbf39782bd3a6ae16b14 , < 862dcc14f2803c556bdd73b43c27b023fafce2fb (git)
Affected: 05736a427f7e16be948ccbf39782bd3a6ae16b14 , < 7e4e824b109f1d41ccf223fbb0565d877d6223a2 (git)
Affected: 05736a427f7e16be948ccbf39782bd3a6ae16b14 , < 97524384762c1fb9b3ded931498dd2047bd0de81 (git)
Affected: 05736a427f7e16be948ccbf39782bd3a6ae16b14 , < 3e4ddeb68751fb4fb657199aed9cfd5d02796875 (git)
Affected: 05736a427f7e16be948ccbf39782bd3a6ae16b14 , < 6c14133d2d3f768e0a35128faac8aa6ed4815051 (git)
Create a notification for this product.
Linux Linux Affected: 2.6.28
Unaffected: 0 , < 2.6.28 (semver)
Unaffected: 4.4.273 , ≤ 4.4.* (semver)
Unaffected: 4.9.273 , ≤ 4.9.* (semver)
Unaffected: 4.14.237 , ≤ 4.14.* (semver)
Unaffected: 4.19.195 , ≤ 4.19.* (semver)
Unaffected: 5.4.126 , ≤ 5.4.* (semver)
Unaffected: 5.10.44 , ≤ 5.10.* (semver)
Unaffected: 5.12.11 , ≤ 5.12.* (semver)
Unaffected: 5.13 , ≤ * (original_commit_for_fix)
Create a notification for this product.
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47276",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-23T21:21:37.653286Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:14:39.026Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:32:07.996Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0bc62e398bbd9e600959e610def5109957437b28"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/4aedc2bc2b32c93555f47c95610efb89cc1ec09b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/acf671ba79c1feccc3ec7cfdcffead4efcec49e7"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/862dcc14f2803c556bdd73b43c27b023fafce2fb"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/7e4e824b109f1d41ccf223fbb0565d877d6223a2"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/97524384762c1fb9b3ded931498dd2047bd0de81"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/3e4ddeb68751fb4fb657199aed9cfd5d02796875"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/6c14133d2d3f768e0a35128faac8aa6ed4815051"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "kernel/trace/ftrace.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "0bc62e398bbd9e600959e610def5109957437b28",
              "status": "affected",
              "version": "05736a427f7e16be948ccbf39782bd3a6ae16b14",
              "versionType": "git"
            },
            {
              "lessThan": "4aedc2bc2b32c93555f47c95610efb89cc1ec09b",
              "status": "affected",
              "version": "05736a427f7e16be948ccbf39782bd3a6ae16b14",
              "versionType": "git"
            },
            {
              "lessThan": "acf671ba79c1feccc3ec7cfdcffead4efcec49e7",
              "status": "affected",
              "version": "05736a427f7e16be948ccbf39782bd3a6ae16b14",
              "versionType": "git"
            },
            {
              "lessThan": "862dcc14f2803c556bdd73b43c27b023fafce2fb",
              "status": "affected",
              "version": "05736a427f7e16be948ccbf39782bd3a6ae16b14",
              "versionType": "git"
            },
            {
              "lessThan": "7e4e824b109f1d41ccf223fbb0565d877d6223a2",
              "status": "affected",
              "version": "05736a427f7e16be948ccbf39782bd3a6ae16b14",
              "versionType": "git"
            },
            {
              "lessThan": "97524384762c1fb9b3ded931498dd2047bd0de81",
              "status": "affected",
              "version": "05736a427f7e16be948ccbf39782bd3a6ae16b14",
              "versionType": "git"
            },
            {
              "lessThan": "3e4ddeb68751fb4fb657199aed9cfd5d02796875",
              "status": "affected",
              "version": "05736a427f7e16be948ccbf39782bd3a6ae16b14",
              "versionType": "git"
            },
            {
              "lessThan": "6c14133d2d3f768e0a35128faac8aa6ed4815051",
              "status": "affected",
              "version": "05736a427f7e16be948ccbf39782bd3a6ae16b14",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "kernel/trace/ftrace.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "2.6.28"
            },
            {
              "lessThan": "2.6.28",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.4.*",
              "status": "unaffected",
              "version": "4.4.273",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.9.*",
              "status": "unaffected",
              "version": "4.9.273",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.14.*",
              "status": "unaffected",
              "version": "4.14.237",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.195",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.126",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.44",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.12.*",
              "status": "unaffected",
              "version": "5.12.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.13",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.4.273",
                  "versionStartIncluding": "2.6.28",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.9.273",
                  "versionStartIncluding": "2.6.28",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.14.237",
                  "versionStartIncluding": "2.6.28",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.195",
                  "versionStartIncluding": "2.6.28",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.126",
                  "versionStartIncluding": "2.6.28",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.44",
                  "versionStartIncluding": "2.6.28",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.12.11",
                  "versionStartIncluding": "2.6.28",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.13",
                  "versionStartIncluding": "2.6.28",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nftrace: Do not blindly read the ip address in ftrace_bug()\n\nIt was reported that a bug on arm64 caused a bad ip address to be used for\nupdating into a nop in ftrace_init(), but the error path (rightfully)\nreturned -EINVAL and not -EFAULT, as the bug caused more than one error to\noccur. But because -EINVAL was returned, the ftrace_bug() tried to report\nwhat was at the location of the ip address, and read it directly. This\ncaused the machine to panic, as the ip was not pointing to a valid memory\naddress.\n\nInstead, read the ip address with copy_from_kernel_nofault() to safely\naccess the memory, and if it faults, report that the address faulted,\notherwise report what was in that location."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-11T13:51:22.756Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/0bc62e398bbd9e600959e610def5109957437b28"
        },
        {
          "url": "https://git.kernel.org/stable/c/4aedc2bc2b32c93555f47c95610efb89cc1ec09b"
        },
        {
          "url": "https://git.kernel.org/stable/c/acf671ba79c1feccc3ec7cfdcffead4efcec49e7"
        },
        {
          "url": "https://git.kernel.org/stable/c/862dcc14f2803c556bdd73b43c27b023fafce2fb"
        },
        {
          "url": "https://git.kernel.org/stable/c/7e4e824b109f1d41ccf223fbb0565d877d6223a2"
        },
        {
          "url": "https://git.kernel.org/stable/c/97524384762c1fb9b3ded931498dd2047bd0de81"
        },
        {
          "url": "https://git.kernel.org/stable/c/3e4ddeb68751fb4fb657199aed9cfd5d02796875"
        },
        {
          "url": "https://git.kernel.org/stable/c/6c14133d2d3f768e0a35128faac8aa6ed4815051"
        }
      ],
      "title": "ftrace: Do not blindly read the ip address in ftrace_bug()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47276",
    "datePublished": "2024-05-21T14:20:04.023Z",
    "dateReserved": "2024-05-21T13:27:52.128Z",
    "dateUpdated": "2026-05-11T13:51:22.756Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2021-47276",
      "date": "2026-05-27",
      "epss": "0.00014",
      "percentile": "0.02627"
    },
    "fkie_nvd": {
      "descriptions": "[{\"lang\": \"en\", \"value\": \"In the Linux kernel, the following vulnerability has been resolved:\\n\\nftrace: Do not blindly read the ip address in ftrace_bug()\\n\\nIt was reported that a bug on arm64 caused a bad ip address to be used for\\nupdating into a nop in ftrace_init(), but the error path (rightfully)\\nreturned -EINVAL and not -EFAULT, as the bug caused more than one error to\\noccur. But because -EINVAL was returned, the ftrace_bug() tried to report\\nwhat was at the location of the ip address, and read it directly. This\\ncaused the machine to panic, as the ip was not pointing to a valid memory\\naddress.\\n\\nInstead, read the ip address with copy_from_kernel_nofault() to safely\\naccess the memory, and if it faults, report that the address faulted,\\notherwise report what was in that location.\"}, {\"lang\": \"es\", \"value\": \" En el kernel de Linux, se resolvi\\u00f3 la siguiente vulnerabilidad: ftrace: no lea ciegamente la direcci\\u00f3n IP en ftrace_bug(). Se inform\\u00f3 que un error en arm64 provoc\\u00f3 que se usara una direcci\\u00f3n IP incorrecta para actualizar a un nop en ftrace_init() , pero la ruta de error (con raz\\u00f3n) devolvi\\u00f3 -EINVAL y no -EFAULT, ya que el error provoc\\u00f3 que ocurriera m\\u00e1s de un error. Pero debido a que se devolvi\\u00f3 -EINVAL, ftrace_bug() intent\\u00f3 informar qu\\u00e9 hab\\u00eda en la ubicaci\\u00f3n de la direcci\\u00f3n IP y leerlo directamente. Esto provoc\\u00f3 que la m\\u00e1quina entrara en p\\u00e1nico, ya que la IP no apuntaba a una direcci\\u00f3n de memoria v\\u00e1lida. En su lugar, lea la direcci\\u00f3n IP con copy_from_kernel_nofault() para acceder de forma segura a la memoria y, si falla, informe que la direcci\\u00f3n fall\\u00f3; de lo contrario, informe qu\\u00e9 hab\\u00eda en esa ubicaci\\u00f3n.\"}]",
      "id": "CVE-2021-47276",
      "lastModified": "2024-11-21T06:35:46.860",
      "published": "2024-05-21T15:15:15.983",
      "references": "[{\"url\": \"https://git.kernel.org/stable/c/0bc62e398bbd9e600959e610def5109957437b28\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}, {\"url\": \"https://git.kernel.org/stable/c/3e4ddeb68751fb4fb657199aed9cfd5d02796875\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}, {\"url\": \"https://git.kernel.org/stable/c/4aedc2bc2b32c93555f47c95610efb89cc1ec09b\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}, {\"url\": \"https://git.kernel.org/stable/c/6c14133d2d3f768e0a35128faac8aa6ed4815051\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}, {\"url\": \"https://git.kernel.org/stable/c/7e4e824b109f1d41ccf223fbb0565d877d6223a2\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}, {\"url\": \"https://git.kernel.org/stable/c/862dcc14f2803c556bdd73b43c27b023fafce2fb\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}, {\"url\": \"https://git.kernel.org/stable/c/97524384762c1fb9b3ded931498dd2047bd0de81\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}, {\"url\": \"https://git.kernel.org/stable/c/acf671ba79c1feccc3ec7cfdcffead4efcec49e7\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}, {\"url\": \"https://git.kernel.org/stable/c/0bc62e398bbd9e600959e610def5109957437b28\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://git.kernel.org/stable/c/3e4ddeb68751fb4fb657199aed9cfd5d02796875\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://git.kernel.org/stable/c/4aedc2bc2b32c93555f47c95610efb89cc1ec09b\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://git.kernel.org/stable/c/6c14133d2d3f768e0a35128faac8aa6ed4815051\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://git.kernel.org/stable/c/7e4e824b109f1d41ccf223fbb0565d877d6223a2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://git.kernel.org/stable/c/862dcc14f2803c556bdd73b43c27b023fafce2fb\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://git.kernel.org/stable/c/97524384762c1fb9b3ded931498dd2047bd0de81\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://git.kernel.org/stable/c/acf671ba79c1feccc3ec7cfdcffead4efcec49e7\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "vulnStatus": "Awaiting Analysis"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2021-47276\",\"sourceIdentifier\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"published\":\"2024-05-21T15:15:15.983\",\"lastModified\":\"2025-04-30T14:46:07.833\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In the Linux kernel, the following vulnerability has been resolved:\\n\\nftrace: Do not blindly read the ip address in ftrace_bug()\\n\\nIt was reported that a bug on arm64 caused a bad ip address to be used for\\nupdating into a nop in ftrace_init(), but the error path (rightfully)\\nreturned -EINVAL and not -EFAULT, as the bug caused more than one error to\\noccur. But because -EINVAL was returned, the ftrace_bug() tried to report\\nwhat was at the location of the ip address, and read it directly. This\\ncaused the machine to panic, as the ip was not pointing to a valid memory\\naddress.\\n\\nInstead, read the ip address with copy_from_kernel_nofault() to safely\\naccess the memory, and if it faults, report that the address faulted,\\notherwise report what was in that location.\"},{\"lang\":\"es\",\"value\":\" En el kernel de Linux, se resolvi\u00f3 la siguiente vulnerabilidad: ftrace: no lea ciegamente la direcci\u00f3n IP en ftrace_bug(). Se inform\u00f3 que un error en arm64 provoc\u00f3 que se usara una direcci\u00f3n IP incorrecta para actualizar a un nop en ftrace_init() , pero la ruta de error (con raz\u00f3n) devolvi\u00f3 -EINVAL y no -EFAULT, ya que el error provoc\u00f3 que ocurriera m\u00e1s de un error. Pero debido a que se devolvi\u00f3 -EINVAL, ftrace_bug() intent\u00f3 informar qu\u00e9 hab\u00eda en la ubicaci\u00f3n de la direcci\u00f3n IP y leerlo directamente. Esto provoc\u00f3 que la m\u00e1quina entrara en p\u00e1nico, ya que la IP no apuntaba a una direcci\u00f3n de memoria v\u00e1lida. En su lugar, lea la direcci\u00f3n IP con copy_from_kernel_nofault() para acceder de forma segura a la memoria y, si falla, informe que la direcci\u00f3n fall\u00f3; de lo contrario, informe qu\u00e9 hab\u00eda en esa ubicaci\u00f3n.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-706\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.6.28\",\"versionEndExcluding\":\"4.4.273\",\"matchCriteriaId\":\"224F5847-99C4-401E-A5D6-712A45CC534F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.5\",\"versionEndExcluding\":\"4.9.273\",\"matchCriteriaId\":\"484D222B-5082-4E28-BF0F-B52766353015\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.10\",\"versionEndExcluding\":\"4.14.237\",\"matchCriteriaId\":\"83CDDAD5-5539-46C9-9255-C1DAC38F7905\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.15\",\"versionEndExcluding\":\"4.19.195\",\"matchCriteriaId\":\"23EECCE9-4D4C-4684-AB00-10C938F5DDC1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.20\",\"versionEndExcluding\":\"5.4.126\",\"matchCriteriaId\":\"876275F9-BEC7-40E8-9D7F-A20729A4A4FF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.5\",\"versionEndExcluding\":\"5.10.44\",\"matchCriteriaId\":\"DA547B08-9D25-467B-AD0D-8460FE4EE70D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.11\",\"versionEndExcluding\":\"5.12.11\",\"matchCriteriaId\":\"F914A757-FAFD-407E-9031-21F66635D5EA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:5.13:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"0CBAD0FC-C281-4666-AB2F-F8E6E1165DF7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:5.13:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"96AC23B2-D46A-49D9-8203-8E1BEDCA8532\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:5.13:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"DA610E30-717C-4700-9F77-A3C9244F3BFD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:5.13:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"1ECD33F5-85BE-430B-8F86-8D7BD560311D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:5.13:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"CF351855-2437-4CF5-AD7C-BDFA51F27683\"}]}]}],\"references\":[{\"url\":\"https://git.kernel.org/stable/c/0bc62e398bbd9e600959e610def5109957437b28\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/3e4ddeb68751fb4fb657199aed9cfd5d02796875\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/4aedc2bc2b32c93555f47c95610efb89cc1ec09b\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/6c14133d2d3f768e0a35128faac8aa6ed4815051\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/7e4e824b109f1d41ccf223fbb0565d877d6223a2\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/862dcc14f2803c556bdd73b43c27b023fafce2fb\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/97524384762c1fb9b3ded931498dd2047bd0de81\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/acf671ba79c1feccc3ec7cfdcffead4efcec49e7\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/0bc62e398bbd9e600959e610def5109957437b28\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/3e4ddeb68751fb4fb657199aed9cfd5d02796875\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/4aedc2bc2b32c93555f47c95610efb89cc1ec09b\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/6c14133d2d3f768e0a35128faac8aa6ed4815051\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/7e4e824b109f1d41ccf223fbb0565d877d6223a2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/862dcc14f2803c556bdd73b43c27b023fafce2fb\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/97524384762c1fb9b3ded931498dd2047bd0de81\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/acf671ba79c1feccc3ec7cfdcffead4efcec49e7\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://git.kernel.org/stable/c/0bc62e398bbd9e600959e610def5109957437b28\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/4aedc2bc2b32c93555f47c95610efb89cc1ec09b\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/acf671ba79c1feccc3ec7cfdcffead4efcec49e7\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/862dcc14f2803c556bdd73b43c27b023fafce2fb\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/7e4e824b109f1d41ccf223fbb0565d877d6223a2\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/97524384762c1fb9b3ded931498dd2047bd0de81\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/3e4ddeb68751fb4fb657199aed9cfd5d02796875\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/6c14133d2d3f768e0a35128faac8aa6ed4815051\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-04T05:32:07.996Z\"}}, {\"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2021-47276\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-05-23T21:21:37.653286Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-05-23T21:22:07.362Z\"}, \"title\": \"CISA ADP Vulnrichment\"}], \"cna\": {\"title\": \"ftrace: Do not blindly read the ip address in ftrace_bug()\", \"affected\": [{\"repo\": \"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\", \"vendor\": \"Linux\", \"product\": \"Linux\", \"versions\": [{\"status\": \"affected\", \"version\": \"05736a427f7e16be948ccbf39782bd3a6ae16b14\", \"lessThan\": \"0bc62e398bbd9e600959e610def5109957437b28\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"05736a427f7e16be948ccbf39782bd3a6ae16b14\", \"lessThan\": \"4aedc2bc2b32c93555f47c95610efb89cc1ec09b\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"05736a427f7e16be948ccbf39782bd3a6ae16b14\", \"lessThan\": \"acf671ba79c1feccc3ec7cfdcffead4efcec49e7\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"05736a427f7e16be948ccbf39782bd3a6ae16b14\", \"lessThan\": \"862dcc14f2803c556bdd73b43c27b023fafce2fb\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"05736a427f7e16be948ccbf39782bd3a6ae16b14\", \"lessThan\": \"7e4e824b109f1d41ccf223fbb0565d877d6223a2\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"05736a427f7e16be948ccbf39782bd3a6ae16b14\", \"lessThan\": \"97524384762c1fb9b3ded931498dd2047bd0de81\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"05736a427f7e16be948ccbf39782bd3a6ae16b14\", \"lessThan\": \"3e4ddeb68751fb4fb657199aed9cfd5d02796875\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"05736a427f7e16be948ccbf39782bd3a6ae16b14\", \"lessThan\": \"6c14133d2d3f768e0a35128faac8aa6ed4815051\", \"versionType\": \"git\"}], \"programFiles\": [\"kernel/trace/ftrace.c\"], \"defaultStatus\": \"unaffected\"}, {\"repo\": \"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\", \"vendor\": \"Linux\", \"product\": \"Linux\", \"versions\": [{\"status\": \"affected\", \"version\": \"2.6.28\"}, {\"status\": \"unaffected\", \"version\": \"0\", \"lessThan\": \"2.6.28\", \"versionType\": \"semver\"}, {\"status\": \"unaffected\", \"version\": \"4.4.273\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"4.4.*\"}, {\"status\": \"unaffected\", \"version\": \"4.9.273\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"4.9.*\"}, {\"status\": \"unaffected\", \"version\": \"4.14.237\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"4.14.*\"}, {\"status\": \"unaffected\", \"version\": \"4.19.195\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"4.19.*\"}, {\"status\": \"unaffected\", \"version\": \"5.4.126\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"5.4.*\"}, {\"status\": \"unaffected\", \"version\": \"5.10.44\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"5.10.*\"}, {\"status\": \"unaffected\", \"version\": \"5.12.11\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"5.12.*\"}, {\"status\": \"unaffected\", \"version\": \"5.13\", \"versionType\": \"original_commit_for_fix\", \"lessThanOrEqual\": \"*\"}], \"programFiles\": [\"kernel/trace/ftrace.c\"], \"defaultStatus\": \"affected\"}], \"references\": [{\"url\": \"https://git.kernel.org/stable/c/0bc62e398bbd9e600959e610def5109957437b28\"}, {\"url\": \"https://git.kernel.org/stable/c/4aedc2bc2b32c93555f47c95610efb89cc1ec09b\"}, {\"url\": \"https://git.kernel.org/stable/c/acf671ba79c1feccc3ec7cfdcffead4efcec49e7\"}, {\"url\": \"https://git.kernel.org/stable/c/862dcc14f2803c556bdd73b43c27b023fafce2fb\"}, {\"url\": \"https://git.kernel.org/stable/c/7e4e824b109f1d41ccf223fbb0565d877d6223a2\"}, {\"url\": \"https://git.kernel.org/stable/c/97524384762c1fb9b3ded931498dd2047bd0de81\"}, {\"url\": \"https://git.kernel.org/stable/c/3e4ddeb68751fb4fb657199aed9cfd5d02796875\"}, {\"url\": \"https://git.kernel.org/stable/c/6c14133d2d3f768e0a35128faac8aa6ed4815051\"}], \"x_generator\": {\"engine\": \"bippy-1.2.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"In the Linux kernel, the following vulnerability has been resolved:\\n\\nftrace: Do not blindly read the ip address in ftrace_bug()\\n\\nIt was reported that a bug on arm64 caused a bad ip address to be used for\\nupdating into a nop in ftrace_init(), but the error path (rightfully)\\nreturned -EINVAL and not -EFAULT, as the bug caused more than one error to\\noccur. But because -EINVAL was returned, the ftrace_bug() tried to report\\nwhat was at the location of the ip address, and read it directly. This\\ncaused the machine to panic, as the ip was not pointing to a valid memory\\naddress.\\n\\nInstead, read the ip address with copy_from_kernel_nofault() to safely\\naccess the memory, and if it faults, report that the address faulted,\\notherwise report what was in that location.\"}], \"cpeApplicability\": [{\"nodes\": [{\"negate\": false, \"cpeMatch\": [{\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"4.4.273\", \"versionStartIncluding\": \"2.6.28\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"4.9.273\", \"versionStartIncluding\": \"2.6.28\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"4.14.237\", \"versionStartIncluding\": \"2.6.28\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"4.19.195\", \"versionStartIncluding\": \"2.6.28\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"5.4.126\", \"versionStartIncluding\": \"2.6.28\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"5.10.44\", \"versionStartIncluding\": \"2.6.28\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"5.12.11\", \"versionStartIncluding\": \"2.6.28\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"5.13\", \"versionStartIncluding\": \"2.6.28\"}], \"operator\": \"OR\"}]}], \"providerMetadata\": {\"orgId\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\", \"shortName\": \"Linux\", \"dateUpdated\": \"2025-05-04T07:07:43.402Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2021-47276\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-05-04T07:07:43.402Z\", \"dateReserved\": \"2024-05-21T13:27:52.128Z\", \"assignerOrgId\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\", \"datePublished\": \"2024-05-21T14:20:04.023Z\", \"assignerShortName\": \"Linux\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author Source Type Date Other

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.