{ "containers": { "cna": { "providerMetadata": { "orgId": "f4215fc3-5b6b-47ff-a258-f7189bd81038" }, "descriptions": [ { "lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nmac80211: track only QoS data frames for admission control\n\nFor admission control, obviously all of that only works for\nQoS data frames, otherwise we cannot even access the QoS\nfield in the header.\n\nSyzbot reported (see below) an uninitialized value here due\nto a status of a non-QoS nullfunc packet, which isn't even\nlong enough to contain the QoS header.\n\nFix this to only do anything for QoS data packets." } ], "affected": [ { "product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": [ "net/mac80211/mlme.c" ], "versions": [ { "version": "02219b3abca5", "lessThan": "69f054d6642c", "status": "affected", "versionType": "git" }, { "version": "02219b3abca5", "lessThan": "46b9e29db201", "status": "affected", "versionType": "git" }, { "version": "02219b3abca5", "lessThan": "eed897a22230", "status": "affected", "versionType": "git" }, { "version": "02219b3abca5", "lessThan": "42d08e97b196", "status": "affected", "versionType": "git" }, { "version": "02219b3abca5", "lessThan": "d5e568c3a4ec", "status": "affected", "versionType": "git" } ] }, { "product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": [ "net/mac80211/mlme.c" ], "versions": [ { "version": "3.19", "status": "affected" }, { "version": "0", "lessThan": "3.19", "status": "unaffected", "versionType": "custom" }, { "version": "4.19.222", "lessThanOrEqual": "4.19.*", "status": "unaffected", "versionType": "custom" }, { "version": "5.4.168", "lessThanOrEqual": "5.4.*", "status": "unaffected", "versionType": "custom" }, { "version": "5.10.88", "lessThanOrEqual": "5.10.*", "status": "unaffected", "versionType": "custom" }, { "version": "5.15.11", "lessThanOrEqual": "5.15.*", "status": "unaffected", "versionType": "custom" }, { "version": "5.16", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix" } ] } ], "references": [ { "url": "https://git.kernel.org/stable/c/69f054d6642c8f6173724ce17e7ee3ff66b8f682" }, { "url": "https://git.kernel.org/stable/c/46b9e29db2012a4d2a40a26101862e002ccf387b" }, { "url": "https://git.kernel.org/stable/c/eed897a22230e3231a740eddd7d6d95ba476625f" }, { "url": "https://git.kernel.org/stable/c/42d08e97b196479f593499e887a9ab81446a34b9" }, { "url": "https://git.kernel.org/stable/c/d5e568c3a4ec2ddd23e7dc5ad5b0c64e4f22981a" } ], "title": "mac80211: track only QoS data frames for admission control", "x_generator": { "engine": "bippy-a5840b7849dd" } } }, "cveMetadata": { "assignerOrgId": "f4215fc3-5b6b-47ff-a258-f7189bd81038", "cveID": "CVE-2021-47602", "requesterUserId": "gregkh@kernel.org", "serial": "1", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.0" }