CVE-2021-47018: powerpc/64: Fix the definition of the fixmap area
First published: Wed Feb 28 2024(Updated: )
In the Linux kernel, the following vulnerability has been resolved: powerpc/64: Fix the definition of the fixmap area At the time being, the fixmap area is defined at the top of the address space or just below KASAN. This definition is not valid for PPC64. For PPC64, use the top of the I/O space. Because of circular dependencies, it is not possible to include asm/fixmap.h in asm/book3s/64/pgtable.h , so define a fixed size AREA at the top of the I/O space for fixmap and ensure during build that the size is big enough.
Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linux kernel | >=5.5<5.10.37 | |
| Linux kernel | >=5.11<5.11.21 | |
| Linux kernel | >=5.12<5.12.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://git.kernel.org/stable/c/4b9fb2c9039a206d37f215936a4d5bee7b1bf9cd
- https://git.kernel.org/stable/c/9ccba66d4d2aff9a3909aa77d57ea8b7cc166f3c
- https://git.kernel.org/stable/c/a84df7c80bdac598d6ac9268ae578da6928883e8
- https://git.kernel.org/stable/c/abb07dc5e8b61ab7b1dde20dd73aa01a3aeb183f
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2266596
- https://access.redhat.com/errata/RHSA-2024:5101
- https://bugzilla.redhat.com/show_bug.cgi?id=2266594
Frequently Asked Questions
What is the severity of CVE-2021-47018?
CVE-2021-47018 has a medium severity rating due to its potential impact on system stability in the Linux kernel.
How do I fix CVE-2021-47018?
To fix CVE-2021-47018, update your Linux kernel to a version that is equal to or later than 5.10.37, 5.11.21, or 5.12.4.
What systems are affected by CVE-2021-47018?
CVE-2021-47018 affects Linux kernel versions between 5.5 and 5.10.37, 5.11 and 5.11.21, and 5.12 and 5.12.4.
Can CVE-2021-47018 be exploited remotely?
CVE-2021-47018 is not known to be exploitable remotely, as it primarily affects local system configurations.
Is CVE-2021-47018 related to any specific hardware?
CVE-2021-47018 specifically affects the powerpc/64 architecture within the Linux kernel.
- agent/title
- agent/type
- agent/first-publish-date
- agent/author
- agent/references
- agent/description
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2021-47018
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/remedy
- agent/softwarecombine
- agent/event
- agent/source
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/linux
- canonical/linux kernel
- version/linux kernel/5.5
- version/linux kernel/5.11
- version/linux kernel/5.12