DEBIAN-CVE-2021-47138

DEBIAN-CVE-2021-47138 PUBLISHED CVSS 7.099999904632568 HIGH

In the Linux kernel, the following vulnerability has been resolved: cxgb4: avoid accessing registers when clearing filters Hardware register having the server TID base can contain invalid values when adapter is in bad state (for example, due to AER fatal error). Reading these invalid values in the register can lead to out-of-bound memory access. So, fix by using the saved server TID base when clearing filters.

Risk Scores

CVSS v3.1

7.099999904632568

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Affected Products

Vendor	Product	Versions
Debian:12	linux	0, 0, 0
Debian:13	linux	0, 0, 0
Debian:11	linux	0, 0, 0
Debian:14	linux	0, 0, 0

Timeline

Mar 25, 2024 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2021-47138 advisory

Open in Interactive Console →