VIR Vulnerability Intelligence Relay

CVE-2021-47073

high
Published 2024-07-02 · Modified 2024-07-08
CVSS v3
VIR risk
8.0

Description

In the Linux kernel, the following vulnerability has been resolved: platform/x86: dell-smbios-wmi: Fix oops on rmmod dell_smbios init_dell_smbios_wmi() only registers the dell_smbios_wmi_driver on systems where the Dell WMI interface is supported. While exit_dell_smbios_wmi() unregisters it unconditionally, this leads to the following oops: [ 175.722921] ------------[ cut here ]------------ [ 175.722925] Unexpected driver unregister! [ 175.722939] WARNING: CPU: 1 PID: 3630 at drivers/base/driver.c:194 driver_unregister+0x38/0x40 ... [ 175.723089] Call Trace: [ 175.723094] cleanup_module+0x5/0xedd [dell_smbios] ... [ 175.723148] ---[ end trace 064c34e1ad49509d ]--- Make the unregister happen on the same condition the register happens to fix this.

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.

OS impact
OSVersionStatusFixed in
rockylinux rocky8fixed
suse slesaffected
debian debianbookwormfixed5.10.40-1
debian debianbullseyefixed5.10.40-1
debian debianforkyfixed5.10.40-1
debian debiansidfixed5.10.40-1
debian debiantrixiefixed5.10.40-1
almalinux almalinux8fixedkernel-rt-core-4.18.0-553.8.1.rt7.349.el8_10.x86_64.rpm

References

💬 Discuss CVE-2021-47073 on VIR Community →

Community-verified mitigations for this CVE will appear above when contributors publish them.

Verify integrity in audit chain (admin only). AS-IS.