4.4

CVE-2021-47547

net: tulip: de4x5: fix the problem that the array 'lp->phy[8]' may be out of bound

In the Linux kernel, the following vulnerability has been resolved:

net: tulip: de4x5: fix the problem that the array 'lp->phy[8]' may be out of bound

In line 5001, if all id in the array 'lp->phy[8]' is not 0, when the
'for' end, the 'k' is 8.

At this time, the array 'lp->phy[8]' may be out of bound.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version < 4.4.294
LinuxLinux Kernel Version >= 4.5 < 4.9.292
LinuxLinux Kernel Version >= 4.10 < 4.14.257
LinuxLinux Kernel Version >= 4.15 < 4.19.220
LinuxLinux Kernel Version >= 4.20 < 5.4.164
LinuxLinux Kernel Version >= 5.5 < 5.10.84
LinuxLinux Kernel Version >= 5.11 < 5.15.7
LinuxLinux Kernel Version5.16 Updaterc1
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.23% 0.14
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0 4.4 1.8 2.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
CWE-129 Improper Validation of Array Index

The product uses untrusted input when calculating or using an array index, but the product does not validate or incorrectly validates the index to ensure the index references a valid position within the array.

https://git.kernel.org/stable/c/12f907cb11576b8cd0b1d95a16d1f10ed5bb7237
Patch
https://git.kernel.org/stable/c/142ead3dc70411bd5977e8c47a6d8bf22287b3f8
Patch
https://git.kernel.org/stable/c/2c1a6a9a011d622a7c61324a97a49801ba425eff
Patch
https://git.kernel.org/stable/c/61217be886b5f7402843677e4be7e7e83de9cb41
Patch
https://git.kernel.org/stable/c/77ff166909458646e66450e42909e0adacc99049
Patch
https://git.kernel.org/stable/c/d3dedaa5a601107cfedda087209772c76e364d58
Patch
https://git.kernel.org/stable/c/ec5bd0aef1cec96830d0c7e06d3597d9e786cc98
Patch
https://git.kernel.org/stable/c/f059fa40f0fcc6bc7a12e0f2a2504e9a4ff74f1f
Patch