Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: vhost-vdpa: fix vm_flags for virtqueue doorbell mapping The virtqueue doorbell is usually implemented via registeres but we don't provide the necessary vma->flags like VM_PFNMAP. This may cause several issues e.g when userspace tries to map the doorbell via vhost IOTLB, kernel may panic due to the page is not backed by page structure. This patch fixes this by setting the necessary vm_flags. With this patch, try to map doorbell via IOTLB will fail with bad address.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 5.8, < 5.10.36 |
References
- https://git.kernel.org/stable/c/3a3e0fad16d40a2aa68ddf7eea4acdf48b22dd44Patch
- https://git.kernel.org/stable/c/3b8b6399666a29daa30b0bb3f5c9e3fc81c5a6a6Patch
- https://git.kernel.org/stable/c/93dbbf20e3ffad14f04227a0b7105f6e6f0387cePatch
- https://git.kernel.org/stable/c/940230a5c31e2714722aee04c521a21f484b4df7Patch
- https://git.kernel.org/stable/c/3a3e0fad16d40a2aa68ddf7eea4acdf48b22dd44Patch
- https://git.kernel.org/stable/c/3b8b6399666a29daa30b0bb3f5c9e3fc81c5a6a6Patch
- https://git.kernel.org/stable/c/93dbbf20e3ffad14f04227a0b7105f6e6f0387cePatch
- https://git.kernel.org/stable/c/940230a5c31e2714722aee04c521a21f484b4df7Patch
FAQ
What is CVE-2021-46967?
CVE-2021-46967 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: vhost-vdpa: fix vm_flags for virtqueue doorbell mapping The virtqueue doorbell is usually implemented via registeres but we don't ...
How severe is CVE-2021-46967?
CVE-2021-46967 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-46967?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.