CVE-2021-46917

MEDIUM

Linux Kernel 5.8-5.12 DMA Engine WQCFG Register Handling Resource Exposure

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: fix wq cleanup of WQCFG registers A pre-release silicon erratum workaround where wq reset does not clear WQCFG registers was leaked into upstream code. Use wq reset command instead of blasting the MMIO region. This also address an issue where we clobber registers in future devices.

References (3)

Core 3

Core References

Patch

https://git.kernel.org/stable/c/e5eb9757fe4c2392e069246ae78badc573af1833

Patch

https://git.kernel.org/stable/c/f7dc8f5619165e1fa3383d0c2519f502d9e2a1a9

Patch

https://git.kernel.org/stable/c/ea9aadc06a9f10ad20a90edc0a484f1147d88a7a

Scores

CVSS v3 5.5

EPSS 0.0022

EPSS Percentile 13.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-668

Status published

Products (11)

Linux/Linux < 5.8

Linux/Linux 2a2df2bd10de44c3804661ed15157817c12d6291

Linux/Linux 5.10.32 - 5.10.*

Linux/Linux 5.11.16 - 5.11.*

Linux/Linux 5.12

Linux/Linux 5.7.10 - 5.8

Linux/Linux 5.8

Linux/Linux da32b28c95a79e399e18c03f8178f41aec9c66e4 - e5eb9757fe4c2392e069246ae78badc573af1833

Linux/Linux da32b28c95a79e399e18c03f8178f41aec9c66e4 - ea9aadc06a9f10ad20a90edc0a484f1147d88a7a

Linux/Linux da32b28c95a79e399e18c03f8178f41aec9c66e4 - f7dc8f5619165e1fa3383d0c2519f502d9e2a1a9

... and 1 more

Published Feb 27, 2024

Tracked Since Feb 18, 2026