VDB

CVE-2021-47293

CVE-2021-47293 PUBLISHED CVSS 7.800000190734863 HIGH

In the Linux kernel, the following vulnerability has been resolved: net/sched: act_skbmod: Skip non-Ethernet packets Currently tcf_skbmod_act() assumes that packets use Ethernet as their L2 protocol, which is not always the case. As an example, for CAN devices: $ ip link add dev vcan0 type vcan $ ip link set up vcan0 $ tc qdisc add dev vcan0 root handle 1: htb $ tc filter add dev vcan0 parent 1: protocol ip prio 10 \ matchall action skbmod swap mac Doing the above silently corrupts all the packets. Do not perform skbmod actions for non-Ethernet packets.

EPSS 0.03% · 7.8th percentile

Risk Scores

CVSS v3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
0.03%
7.8th percentile

Affected Products

VendorProductVersions
LinuxLinux5.14, 86da71b57383d40993cb90baafb3735cffe5d800, 86da71b57383d40993cb90baafb3735cffe5d800
linuxlinux_kernel4.9, 4.9, 4.9

Timeline

  • May 21, 2024 CVE Published
  • May 22, 2024 EPSS Score
  • Jun 16, 2024 EPSS Score
  • Jul 9, 2024 EPSS Score
  • Aug 2, 2024 EPSS Score
  • Aug 25, 2024 EPSS Score
  • Sep 18, 2024 EPSS Score
  • Oct 12, 2024 EPSS Score
  • Nov 4, 2024 EPSS Score
  • Nov 28, 2024 EPSS Score
  • Dec 23, 2024 EPSS Score
  • Jan 15, 2025 EPSS Score

References

…and 38 more

Open in Interactive Console →
$ Console Community · 100/wk Open console ›