CVE-2021-47083

HIGH

Linux Kernel < 5.4.169 - Out-of-bounds Read in Mediatek Pinctrl EINT Handling

Title source: llm
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: pinctrl: mediatek: fix global-out-of-bounds issue When eint virtual eint number is greater than gpio number, it maybe produce 'desc[eint_n]' size globle-out-of-bounds issue.

Scores

CVSS v3 7.1
EPSS 0.0023
EPSS Percentile 13.4%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-125
Status published
Products (12)
Linux/Linux < 4.20
Linux/Linux 4.20
Linux/Linux 5.10.89 - 5.10.*
Linux/Linux 5.15.12 - 5.15.*
Linux/Linux 5.16
Linux/Linux 5.4.169 - 5.4.*
Linux/Linux fb5fa8dc151b2364c975a9070eedb28a354a995a - 2d5446da5acecf9c67db1c9d55ae2c3e5de01f8d
Linux/Linux fb5fa8dc151b2364c975a9070eedb28a354a995a - 441d3873664d170982922c5d2fc01fa89d9439ed
Linux/Linux fb5fa8dc151b2364c975a9070eedb28a354a995a - f373298e1bf0c6ea097c0bcc558dc43ad53e421f
Linux/Linux fb5fa8dc151b2364c975a9070eedb28a354a995a - fb563baa3eb8e7a15f2cff3c2695e2cca0493e69
... and 2 more
Published Mar 04, 2024
Tracked Since Feb 18, 2026