CVE-2021-47347

HIGH

Linux Kernel < 4.4.276 - Buffer Overflow

Title source: rule

Description

In the Linux kernel, the following vulnerability has been resolved: wl1251: Fix possible buffer overflow in wl1251_cmd_scan Function wl1251_cmd_scan calls memcpy without checking the length. Harden by checking the length is within the maximum allowed size.

References (9)

Core 9

Core References

Patch

https://git.kernel.org/stable/c/0f6c0488368c9ac1aa685821916fadba32f5d1ef

Patch

https://git.kernel.org/stable/c/115103f6e3f1c26c473766c16439c7c8b235529a

Patch

https://git.kernel.org/stable/c/302e2ee34c5f7c5d805b7f835d9a6f2b43474e2a

Patch

https://git.kernel.org/stable/c/40af3960a15339e8bbd3be50c3bc7b35e1a0b6ea

Patch

https://git.kernel.org/stable/c/57ad99ae3c6738ba87bad259bb57c641ca68ebf6

Patch

https://git.kernel.org/stable/c/c5e4a10d7bd5d4f419d8b9705dff60cf69b302a1

Patch

https://git.kernel.org/stable/c/d10a87a3535cce2b890897914f5d0d83df669c63

Patch

https://git.kernel.org/stable/c/d3d8b9c9c7843dce31e284927d4c9904fd5a510a

Patch

https://git.kernel.org/stable/c/d71dddeb5380613f9ef199f3e7368fd78fb1a46e

Scores

CVSS v3 8.8

EPSS 0.0014

EPSS Percentile 34.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-120

Status published

Products (1)

linux/linux_kernel < 4.4.276

Published May 21, 2024

Tracked Since Feb 18, 2026