CVE-2021-46926

EPSS 0.01%
Veröffentlicht 27.02.2024 10:15:07
Zuletzt bearbeitet 21.11.2024 06:34:57
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

ALSA: hda: intel-sdw-acpi: harden detection of controller

The existing code currently sets a pointer to an ACPI handle before
checking that it's actually a SoundWire controller. This can lead to
issues where the graph walk continues and eventually fails, but the
pointer was set already.

This patch changes the logic so that the information provided to
the caller is set when a controller is found.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version < 5.15.13

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.01%	0.019

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

https://git.kernel.org/stable/c/385f287f9853da402d94278e59f594501c1d1dad

Patch

https://git.kernel.org/stable/c/cce476954401e3421afafb25bbaa926050688b1d

Patch

https://nvd.nist.gov/vuln/detail/CVE-2021-46926

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-46926

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-46926

EUVD