CVE-2021-47252: batman-adv: Avoid WARN_ON timing related checks
First published: Tue May 21 2024(Updated: )
In the Linux kernel, the following vulnerability has been resolved: batman-adv: Avoid WARN_ON timing related checks The soft/batadv interface for a queued OGM can be changed during the time the OGM was queued for transmission and when the OGM is actually transmitted by the worker. But WARN_ON must be used to denote kernel bugs and not to print simple warnings. A warning can simply be printed using pr_warn.
Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linux Kernel | ||
| Linux Kernel | >=3.14<4.4.293 | |
| Linux Kernel | >=4.5<4.9.274 | |
| Linux Kernel | >=4.10<4.14.238 | |
| Linux Kernel | >=4.15<4.19.196 | |
| Linux Kernel | >=4.20<5.4.128 | |
| Linux Kernel | >=5.5<5.10.46 | |
| Linux Kernel | >=5.11<5.12.13 | |
| Linux Kernel | =5.13-rc1 | |
| Linux Kernel | =5.13-rc2 | |
| Linux Kernel | =5.13-rc3 | |
| Linux Kernel | =5.13-rc4 | |
| Linux Kernel | =5.13-rc5 | |
| Linux Kernel | =5.13-rc6 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://git.kernel.org/stable/c/45011f2973f6b52cf50db397bb27bf805f5f0e7f
- https://git.kernel.org/stable/c/6031daaaf6d5c359c99dfffa102e332df234ff09
- https://git.kernel.org/stable/c/77a99aad5bc3ea105806ebae6be3cbadc2fc615e
- https://git.kernel.org/stable/c/e8e9d2968a9d08bf5c683afca182f1537edebf8d
- https://git.kernel.org/stable/c/e7fbd8184fa9e85f0d648c499841cb7ff6dec9f4
- https://git.kernel.org/stable/c/282baa8104af44e04c4af3e7f933b44267c7f86f
- https://git.kernel.org/stable/c/2eb4e0b3631832a4291c8bf4c9db873f60b128c8
- https://git.kernel.org/stable/c/9f460ae31c4435fd022c443a6029352217a16ac1
Frequently Asked Questions
What is the severity of CVE-2021-47252?
CVE-2021-47252 is classified as a medium severity vulnerability in the Linux kernel.
How do I fix CVE-2021-47252?
To fix CVE-2021-47252, update your Linux kernel to the latest version that has patched this vulnerability.
What type of systems are affected by CVE-2021-47252?
CVE-2021-47252 affects the Linux kernel, specifically systems utilizing the batman-adv networking protocol.
What is the impact of CVE-2021-47252?
The impact of CVE-2021-47252 can include potential timing-related issues during packet transmission in the batman-adv protocol.
Who is responsible for mitigating CVE-2021-47252?
System administrators and maintainers of affected Linux installations are responsible for applying updates to mitigate CVE-2021-47252.
- agent/references
- agent/title
- agent/type
- agent/description
- agent/first-publish-date
- agent/author
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/source
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-api
- source/NVD
- agent/severity
- agent/last-modified-date
- agent/remedy
- agent/softwarecombine
- agent/tags
- vendor/linux foundation
- canonical/linux kernel
- vendor/linux
- version/linux kernel/3.14
- version/linux kernel/4.5
- version/linux kernel/4.10
- version/linux kernel/4.15
- version/linux kernel/4.20
- version/linux kernel/5.5
- version/linux kernel/5.11
- version/linux kernel/5.13-rc1
- version/linux kernel/5.13-rc2
- version/linux kernel/5.13-rc3
- version/linux kernel/5.13-rc4
- version/linux kernel/5.13-rc5
- version/linux kernel/5.13-rc6