Bugzilla – Bug 1220952
VUL-0: CVE-2021-47086: kernel: phonet/pep: refuse to enable an unbound pipe
Last modified: 2024-07-15 09:20:54 UTC
In the Linux kernel, the following vulnerability has been resolved: phonet/pep: refuse to enable an unbound pipe This ioctl() implicitly assumed that the socket was already bound to a valid local socket name, i.e. Phonet object. If the socket was not bound, two separate problems would occur: 1) We'd send an pipe enablement request with an invalid source object. 2) Later socket calls could BUG on the socket unexpectedly being connected yet not bound to a valid object. References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-47086 https://www.cve.org/CVERecord?id=CVE-2021-47086 https://lore.kernel.org/linux-cve-announce/2024030455-CVE-2021-47086-cdaa@gregkh/ Patch: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=75a2f3152009
Tracking as affected: -cve/linux-5.14 cve/linux-4.12, cve/linux-4.4, cve/linux-5.3 not affected due to CONFIG_PHONET not set SLE15-SP6 and stable already fixed
Michal, could you please look at it?