{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"cveId":"CVE-2021-47424","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2024-05-21T14:58:30.827Z","datePublished":"2024-05-21T15:04:11.271Z","dateUpdated":"2025-05-04T07:10:37.203Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2025-05-04T07:10:37.203Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ni40e: Fix freeing of uninitialized misc IRQ vector\n\nWhen VSI set up failed in i40e_probe() as part of PF switch set up\ndriver was trying to free misc IRQ vectors in\ni40e_clear_interrupt_scheme and produced a kernel Oops:\n\n   Trying to free already-free IRQ 266\n   WARNING: CPU: 0 PID: 5 at kernel/irq/manage.c:1731 __free_irq+0x9a/0x300\n   Workqueue: events work_for_cpu_fn\n   RIP: 0010:__free_irq+0x9a/0x300\n   Call Trace:\n   ? synchronize_irq+0x3a/0xa0\n   free_irq+0x2e/0x60\n   i40e_clear_interrupt_scheme+0x53/0x190 [i40e]\n   i40e_probe.part.108+0x134b/0x1a40 [i40e]\n   ? kmem_cache_alloc+0x158/0x1c0\n   ? acpi_ut_update_ref_count.part.1+0x8e/0x345\n   ? acpi_ut_update_object_reference+0x15e/0x1e2\n   ? strstr+0x21/0x70\n   ? irq_get_irq_data+0xa/0x20\n   ? mp_check_pin_attr+0x13/0xc0\n   ? irq_get_irq_data+0xa/0x20\n   ? mp_map_pin_to_irq+0xd3/0x2f0\n   ? acpi_register_gsi_ioapic+0x93/0x170\n   ? pci_conf1_read+0xa4/0x100\n   ? pci_bus_read_config_word+0x49/0x70\n   ? do_pci_enable_device+0xcc/0x100\n   local_pci_probe+0x41/0x90\n   work_for_cpu_fn+0x16/0x20\n   process_one_work+0x1a7/0x360\n   worker_thread+0x1cf/0x390\n   ? create_worker+0x1a0/0x1a0\n   kthread+0x112/0x130\n   ? kthread_flush_work_fn+0x10/0x10\n   ret_from_fork+0x1f/0x40\n\nThe problem is that at that point misc IRQ vectors\nwere not allocated yet and we get a call trace\nthat driver is trying to free already free IRQ vectors.\n\nAdd a check in i40e_clear_interrupt_scheme for __I40E_MISC_IRQ_REQUESTED\nPF state before calling i40e_free_misc_vector. This state is set only if\nmisc IRQ vectors were properly initialized."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/net/ethernet/intel/i40e/i40e_main.c"],"versions":[{"version":"c17401a1dd210a5f22ab1ec7c7366037c158a14c","lessThan":"60ad4cde0ad28921f9ea25b0201c774b95ffa4b4","status":"affected","versionType":"git"},{"version":"c17401a1dd210a5f22ab1ec7c7366037c158a14c","lessThan":"17063cac4088b8e2fc0f633abddca5426ed58312","status":"affected","versionType":"git"},{"version":"c17401a1dd210a5f22ab1ec7c7366037c158a14c","lessThan":"97aeed72af4f83ae51534f0a2473ff52f8d66236","status":"affected","versionType":"git"},{"version":"c17401a1dd210a5f22ab1ec7c7366037c158a14c","lessThan":"75099439209d3cda439a1d9b00d19a50f0066fef","status":"affected","versionType":"git"},{"version":"c17401a1dd210a5f22ab1ec7c7366037c158a14c","lessThan":"2e5a20573a926302b233b0c2e1077f5debc7ab2e","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/net/ethernet/intel/i40e/i40e_main.c"],"versions":[{"version":"4.15","status":"affected"},{"version":"0","lessThan":"4.15","status":"unaffected","versionType":"semver"},{"version":"4.19.211","lessThanOrEqual":"4.19.*","status":"unaffected","versionType":"semver"},{"version":"5.4.153","lessThanOrEqual":"5.4.*","status":"unaffected","versionType":"semver"},{"version":"5.10.73","lessThanOrEqual":"5.10.*","status":"unaffected","versionType":"semver"},{"version":"5.14.12","lessThanOrEqual":"5.14.*","status":"unaffected","versionType":"semver"},{"version":"5.15","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.15","versionEndExcluding":"4.19.211"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.15","versionEndExcluding":"5.4.153"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.15","versionEndExcluding":"5.10.73"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.15","versionEndExcluding":"5.14.12"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.15","versionEndExcluding":"5.15"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/60ad4cde0ad28921f9ea25b0201c774b95ffa4b4"},{"url":"https://git.kernel.org/stable/c/17063cac4088b8e2fc0f633abddca5426ed58312"},{"url":"https://git.kernel.org/stable/c/97aeed72af4f83ae51534f0a2473ff52f8d66236"},{"url":"https://git.kernel.org/stable/c/75099439209d3cda439a1d9b00d19a50f0066fef"},{"url":"https://git.kernel.org/stable/c/2e5a20573a926302b233b0c2e1077f5debc7ab2e"}],"title":"i40e: Fix freeing of uninitialized misc IRQ vector","x_generator":{"engine":"bippy-1.2.0"}},"adp":[{"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2024-06-11T17:26:01.019314Z","id":"CVE-2021-47424","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2024-06-11T17:26:22.350Z"}},{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-04T05:39:59.004Z"},"title":"CVE Program Container","references":[{"url":"https://git.kernel.org/stable/c/60ad4cde0ad28921f9ea25b0201c774b95ffa4b4","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/17063cac4088b8e2fc0f633abddca5426ed58312","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/97aeed72af4f83ae51534f0a2473ff52f8d66236","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/75099439209d3cda439a1d9b00d19a50f0066fef","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/2e5a20573a926302b233b0c2e1077f5debc7ab2e","tags":["x_transferred"]}]}]}}