CVE-2021-47037

Advisory lineage Upstream: 0 Downstream: 3

Downstream

DEBIAN-CVE-2021-47037 DLA-4327-1 UBUNTU-CVE-2021-47037

Modified

Published: 28 Feb 2024, 08:13

Last modified:11 May 2026, 13:46

Vulnerability Summary

Overall Risk (default)

low

22/100

CVSS Score

5.5 MEDIUM

v3.1 (nvd)

EPSS Score

0.02% LOW

0% probability -0.01%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

28 Feb 2024, 08:13

Published

Vulnerability first disclosed

11 May 2026, 13:46

Last Modified

Vulnerability information updated

Description

In the Linux kernel, the following vulnerability has been resolved: ASoC: q6afe-clocks: fix reprobing of the driver Q6afe-clocks driver can get reprobed. For example if the APR services are restarted after the firmware crash. However currently Q6afe-clocks driver will oops because hw.init will get cleared during first _probe call. Rewrite the driver to fill the clock data at runtime rather than using big static array of clocks.

CVSS Metrics

v3.1•MEDIUM•Score: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS Trends

Current EPSS score: 0.02%• Percentile: 4%

Affected Systems

linux•linux
≥ 520a1c396d1966b64884d8e0176a580150d5a09e, < 2202e87fc19440cecfd4f7b4f60a7d48bc2e236c | ≥ 520a1c396d1966b64884d8e0176a580150d5a09e, < 6893df3753beafa5f7351228a9dd8157a57d7492 | ≥ 520a1c396d1966b64884d8e0176a580150d5a09e, < 62413972f5266568848a36fd15160397b211fa74 | ≥ 520a1c396d1966b64884d8e0176a580150d5a09e, < 96fadf7e8ff49fdb74754801228942b67c3eeebd | 5.10
linux•linux_kernel
≥ 5.10, < 5.11.21 | ≥ 5.12, < 5.12.4