CVE-2021-47016

m68k: mvme147,mvme16x: Don't wipe PCC timer config bits

Severity Score

"-"

*CVSS v-

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved:

m68k: mvme147,mvme16x: Don't wipe PCC timer config bits

Don't clear the timer 1 configuration bits when clearing the interrupt flag
and counter overflow. As Michael reported, "This results in no timer
interrupts being delivered after the first. Initialization then hangs
in calibrate_delay as the jiffies counter is not updated."

On mvme16x, enable the timer after requesting the irq, consistent with
mvme147.

En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: m68k: mvme147,mvme16x: No borre los bits de configuración del temporizador PCC. No borre los bits de configuración del temporizador 1 al borrar el indicador de interrupción y el desbordamiento del contador. Como informó Michael, "Esto da como resultado que no se entreguen interrupciones del temporizador después de la primera. Luego, la inicialización se bloquea en calibrate_delay porque el contador de santiamén no se actualiza". En mvme16x, habilite el temporizador después de solicitar irq, de acuerdo con mvme147.

*Credits: N/A

CVSS Scores

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-02-27 CVE Reserved
2024-02-29 CVE Published
2024-03-01 EPSS Updated
2024-08-04 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (6)

URL	Tag	Source
https://git.kernel.org/stable/c/7529b90d051e4629884771ba2b1d3a87d2c6a9d7	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/f6a90818a32058fca62cda3a2027a6a2364e1878	2021-05-14
https://git.kernel.org/stable/c/1dfb26df15fc7036a74221d43de7427f74293dae	2021-05-14
https://git.kernel.org/stable/c/73fdeb612d25b5e105c219e05434285a45d23576	2021-05-14
https://git.kernel.org/stable/c/5d34225169346cab5145978d153b9ce90e9ace21	2021-05-14
https://git.kernel.org/stable/c/43262178c043032e7c42d00de44c818ba05f9967	2021-04-06

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.2 < 5.4.119 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.2 < 5.4.119"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.2 < 5.10.37 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.2 < 5.10.37"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.2 < 5.11.21 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.2 < 5.11.21"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.2 < 5.12.4 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.2 < 5.12.4"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.2 < 5.13 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.2 < 5.13"		en		Affected