CVE-2021-46909 : In the Linux kernel, the following vulnerability has been resolved: ARM: footbr

In the Linux kernel, the following vulnerability has been resolved: ARM: footbridge: fix PCI interrupt mapping Since commit 30fdfb929e82 ("PCI: Add a call to pci_assign_irq() in pci_device_probe()"), the PCI code will call the IRQ mapping function whenever a PCI driver is probed. If these are marked as __init, this causes an oops if a PCI driver is loaded or bound after the kernel has initialised.

Published 2024-02-27 07:15:07

Updated 2024-04-17 16:57:37

Source Linux

View at NVD, CVE.org

Products affected by CVE-2021-46909

Linux » Linux Kernel
Versions from including (>=) 5.11.0 and before (<) 5.11.16
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 5.5.0 and before (<) 5.10.32
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 4.20.0 and before (<) 5.4.114
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 4.15.0 and before (<) 4.19.189
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 4.13.0 and before (<) 4.14.232
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2021-46909

EPSS FAQ

0.01%

Probability of exploitation activity in the next 30 days EPSS Score History

~ %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2021-46909

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
5.5	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H	1.8	3.6	NIST	2024-04-17
Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High

CWE ids for CVE-2021-46909

CWE-754 Improper Check for Unusual or Exceptional Conditions

The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2021-46909

https://git.kernel.org/stable/c/c3efce8cc9807339633ee30e39882f4c8626ee1d

ARM: footbridge: fix PCI interrupt mapping - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://git.kernel.org/stable/c/1fc087fdb98d556b416c82ed6e3964a30885f47a

ARM: footbridge: fix PCI interrupt mapping - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://git.kernel.org/stable/c/2643da6aa57920d9159a1a579fb04f89a2b0d29a

ARM: footbridge: fix PCI interrupt mapping - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://git.kernel.org/stable/c/532747fd5c7aaa17ee5cf79f3e947c31eb0e35cf

ARM: footbridge: fix PCI interrupt mapping - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://git.kernel.org/stable/c/871b569a3e67f570df9f5ba195444dc7c621293b

ARM: footbridge: fix PCI interrupt mapping - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://git.kernel.org/stable/c/30e3b4f256b4e366a61658c294f6a21b8626dda7

ARM: footbridge: fix PCI interrupt mapping - kernel/git/stable/linux.git - Linux kernel stable tree
Patch

Jump to

Vulnerability Details : CVE-2021-46909

Products affected by CVE-2021-46909

Exploit prediction scoring system (EPSS) score for CVE-2021-46909

CVSS scores for CVE-2021-46909

CWE ids for CVE-2021-46909

References for CVE-2021-46909