CVE-2021-47050

low-risk
Published 2024-02-28

In the Linux kernel, the following vulnerability has been resolved: memory: renesas-rpc-if: fix possible NULL pointer dereference of resource The platform_get_resource_byname() can return NULL which would be immediately dereferenced by resource_size(). Instead dereference it after validating the resource. Addresses-Coverity: Dereference null return value

Do I need to act?

-
0.03% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
5
CVSS 5.5/10 Medium
LOCAL / LOW complexity

Affected Products (1)

Affected Vendors

Linux

References (8)

Patch https://git.kernel.org/stable/c/59e27d7c94aa02da039b000d33c304c179395801
Patch https://git.kernel.org/stable/c/71bcc1b4a1743534d8abdcb57ff912e6bc390438
Patch https://git.kernel.org/stable/c/a74cb41af7dbe019e4096171f8bc641c7ce910ad
Patch https://git.kernel.org/stable/c/e16acc3a37f09e18835dc5d8014942c2ef6ca957
Patch https://git.kernel.org/stable/c/59e27d7c94aa02da039b000d33c304c179395801
Patch https://git.kernel.org/stable/c/71bcc1b4a1743534d8abdcb57ff912e6bc390438
Patch https://git.kernel.org/stable/c/a74cb41af7dbe019e4096171f8bc641c7ce910ad
Patch https://git.kernel.org/stable/c/e16acc3a37f09e18835dc5d8014942c2ef6ca957
23
/ 100
low-risk
Severity 18/34 · Moderate
Exploitability 0/34 · Minimal
Exposure 5/34 · Minimal