CVE-2021-47016

low-risk
Published 2024-02-29

In the Linux kernel, the following vulnerability has been resolved: m68k: mvme147,mvme16x: Don't wipe PCC timer config bits Don't clear the timer 1 configuration bits when clearing the interrupt flag and counter overflow. As Michael reported, "This results in no timer interrupts being delivered after the first. Initialization then hangs in calibrate_delay as the jiffies counter is not updated." On mvme16x, enable the timer after requesting the irq, consistent with mvme147.

Do I need to act?

-
0.02% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
5
CVSS 5.5/10 Medium
LOCAL / LOW complexity

Affected Products (1)

Affected Vendors

Linux

References (10)

Patch https://git.kernel.org/stable/c/1dfb26df15fc7036a74221d43de7427f74293dae
Patch https://git.kernel.org/stable/c/43262178c043032e7c42d00de44c818ba05f9967
Patch https://git.kernel.org/stable/c/5d34225169346cab5145978d153b9ce90e9ace21
Patch https://git.kernel.org/stable/c/73fdeb612d25b5e105c219e05434285a45d23576
Patch https://git.kernel.org/stable/c/f6a90818a32058fca62cda3a2027a6a2364e1878
Patch https://git.kernel.org/stable/c/1dfb26df15fc7036a74221d43de7427f74293dae
Patch https://git.kernel.org/stable/c/43262178c043032e7c42d00de44c818ba05f9967
Patch https://git.kernel.org/stable/c/5d34225169346cab5145978d153b9ce90e9ace21
Patch https://git.kernel.org/stable/c/73fdeb612d25b5e105c219e05434285a45d23576
Patch https://git.kernel.org/stable/c/f6a90818a32058fca62cda3a2027a6a2364e1878
23
/ 100
low-risk
Severity 18/34 · Moderate
Exploitability 0/34 · Minimal
Exposure 5/34 · Minimal