[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2021-47041":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T02:53:27.892Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":39,"aliases":40,"duplicate_of":9,"upstream":41,"downstream":42,"duplicates":53,"related":54,"reserved_at":9,"published_at":58,"modified_at":59,"state":60,"summary":61,"references_raw":70,"kevs":93,"epss":94,"epss_history":97,"metrics":358,"affected":364},"CVE-2021-47041","In the Linux kernel, the following vulnerability has been resolved:\n\nnvmet-tcp: fix incorrect locking in state_change sk callback\n\nWe are not changing anything in the TCP connection state so\nwe should not take a write_lock but rather a read lock.\n\nThis caused a deadlock when running nvmet-tcp and nvme-tcp\non the same system, where state_change callbacks on the\nhost and on the controller side have causal relationship\nand made lockdep report on this with blktests:\n\n================================\nWARNING: inconsistent lock state\n5.12.0-rc3 #1 Tainted: G          I\n--------------------------------\ninconsistent {IN-SOFTIRQ-W} -> {SOFTIRQ-ON-R} usage.\nnvme/1324 [HC0[0]:SC0[0]:HE1:SE1] takes:\nffff888363151000 (clock-AF_INET){++-?}-{2:2}, at: nvme_tcp_state_change+0x21/0x150 [nvme_tcp]\n{IN-SOFTIRQ-W} state was registered at:\n  __lock_acquire+0x79b/0x18d0\n  lock_acquire+0x1ca/0x480\n  _raw_write_lock_bh+0x39/0x80\n  nvmet_tcp_state_change+0x21/0x170 [nvmet_tcp]\n  tcp_fin+0x2a8/0x780\n  tcp_data_queue+0xf94/0x1f20\n  tcp_rcv_established+0x6ba/0x1f00\n  tcp_v4_do_rcv+0x502/0x760\n  tcp_v4_rcv+0x257e/0x3430\n  ip_protocol_deliver_rcu+0x69/0x6a0\n  ip_local_deliver_finish+0x1e2/0x2f0\n  ip_local_deliver+0x1a2/0x420\n  ip_rcv+0x4fb/0x6b0\n  __netif_receive_skb_one_core+0x162/0x1b0\n  process_backlog+0x1ff/0x770\n  __napi_poll.constprop.0+0xa9/0x5c0\n  net_rx_action+0x7b3/0xb30\n  __do_softirq+0x1f0/0x940\n  do_softirq+0xa1/0xd0\n  __local_bh_enable_ip+0xd8/0x100\n  ip_finish_output2+0x6b7/0x18a0\n  __ip_queue_xmit+0x706/0x1aa0\n  __tcp_transmit_skb+0x2068/0x2e20\n  tcp_write_xmit+0xc9e/0x2bb0\n  __tcp_push_pending_frames+0x92/0x310\n  inet_shutdown+0x158/0x300\n  __nvme_tcp_stop_queue+0x36/0x270 [nvme_tcp]\n  nvme_tcp_stop_queue+0x87/0xb0 [nvme_tcp]\n  nvme_tcp_teardown_admin_queue+0x69/0xe0 [nvme_tcp]\n  nvme_do_delete_ctrl+0x100/0x10c [nvme_core]\n  nvme_sysfs_delete.cold+0x8/0xd [nvme_core]\n  kernfs_fop_write_iter+0x2c7/0x460\n  new_sync_write+0x36c/0x610\n  vfs_write+0x5c0/0x870\n  ksys_write+0xf9/0x1d0\n  do_syscall_64+0x33/0x40\n  entry_SYSCALL_64_after_hwframe+0x44/0xae\nirq event stamp: 10687\nhardirqs last  enabled at (10687): [\u003Cffffffff9ec376bd>] _raw_spin_unlock_irqrestore+0x2d/0x40\nhardirqs last disabled at (10686): [\u003Cffffffff9ec374d8>] _raw_spin_lock_irqsave+0x68/0x90\nsoftirqs last  enabled at (10684): [\u003Cffffffff9f000608>] __do_softirq+0x608/0x940\nsoftirqs last disabled at (10649): [\u003Cffffffff9cdedd31>] do_softirq+0xa1/0xd0\n\nother info that might help us debug this:\n Possible unsafe locking scenario:\n\n       CPU0\n       ----\n  lock(clock-AF_INET);\n  \u003CInterrupt>\n    lock(clock-AF_INET);\n\n *** DEADLOCK ***\n\n5 locks held by nvme/1324:\n #0: ffff8884a01fe470 (sb_writers#4){.+.+}-{0:0}, at: ksys_write+0xf9/0x1d0\n #1: ffff8886e435c090 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x216/0x460\n #2: ffff888104d90c38 (kn->active#255){++++}-{0:0}, at: kernfs_remove_self+0x22d/0x330\n #3: ffff8884634538d0 (&queue->queue_lock){+.+.}-{3:3}, at: nvme_tcp_stop_queue+0x52/0xb0 [nvme_tcp]\n #4: ffff888363150d30 (sk_lock-AF_INET){+.+.}-{0:0}, at: inet_shutdown+0x59/0x300\n\nstack backtrace:\nCPU: 26 PID: 1324 Comm: nvme Tainted: G          I       5.12.0-rc3 #1\nHardware name: Dell Inc. PowerEdge R640/06NR82, BIOS 2.10.0 11/12/2020\nCall Trace:\n dump_stack+0x93/0xc2\n mark_lock_irq.cold+0x2c/0xb3\n ? verify_lock_unused+0x390/0x390\n ? stack_trace_consume_entry+0x160/0x160\n ? lock_downgrade+0x100/0x100\n ? save_trace+0x88/0x5e0\n ? _raw_spin_unlock_irqrestore+0x2d/0x40\n mark_lock+0x530/0x1470\n ? mark_lock_irq+0x1d10/0x1d10\n ? enqueue_timer+0x660/0x660\n mark_usage+0x215/0x2a0\n __lock_acquire+0x79b/0x18d0\n ? tcp_schedule_loss_probe.part.0+0x38c/0x520\n lock_acquire+0x1ca/0x480\n ? nvme_tcp_state_change+0x21/0x150 [nvme_tcp]\n ? rcu_read_unlock+0x40/0x40\n ? tcp_mtu_probe+0x1ae0/0x1ae0\n ? kmalloc_reserve+0xa0/0xa0\n ? sysfs_file_ops+0x170/0x170\n _raw_read_lock+0x3d/0xa0\n ? nvme_tcp_state_change+0x21/0x150 [nvme_tcp]\n nvme_tcp_state_change+0x21/0x150 [nvme_tcp]\n ? sysfs_file_ops\n---truncated---",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-667","Improper Locking","The product does not properly acquire or release a lock on a resource, leading to unexpected resource state changes and behaviors.","weakness","Draft","Class",[19,31,35],{"id":20,"name":21,"techniques":22},"CAPEC-25","Forced Deadlock",[23],{"id":24,"name":25,"tactics":26,"countermeasures":30},"T1499.004","Application or System Exploitation",[27],{"id":28,"name":29},"TA0105","Impact",[],{"id":32,"name":33,"techniques":34},"CAPEC-26","Leveraging Race Conditions",[],{"id":36,"name":37,"techniques":38},"CAPEC-27","Leveraging Race Conditions via Symbolic Links",[],[],[],[],[43,45,47,49,51],{"_key":44},"SUSE-SU-2024:1642-1",{"_key":46},"SUSE-SU-2024:1645-1",{"_key":48},"SUSE-SU-2024:1650-1",{"_key":50},"DEBIAN-CVE-2021-47041",{"_key":52},"UBUNTU-CVE-2021-47041",[],[55,56,57],{"_key":44},{"_key":46},{"_key":48},"2024-02-28T08:13:47.182Z","2026-05-11T13:46:48.908Z","Analyzed",{"cisa_kev":62,"cisa_ransomware":62,"cisa_vendor":9,"epss_severity":63,"epss_score":64,"severity":65,"severity_score":66,"severity_version":67,"severity_source":68,"severity_vector":69,"severity_status":60},false,"low",0.00015,"medium",5.5,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",[71,77,81,85,89],{"url":72,"sources":73,"tags":75},"https://git.kernel.org/stable/c/999d606a820c36ae9b9e9611360c8b3d8d4bb777",[74,68],"cve.org",[76],"Patch",{"url":78,"sources":79,"tags":80},"https://git.kernel.org/stable/c/60ade0d56b06537a28884745059b3801c78e03bc",[74,68],[76],{"url":82,"sources":83,"tags":84},"https://git.kernel.org/stable/c/06beaa1a9f6e501213195e47c30416032fd2bbd5",[74,68],[76],{"url":86,"sources":87,"tags":88},"https://git.kernel.org/stable/c/906c538340dde6d891df89fe7dac8eaa724e40da",[74,68],[76],{"url":90,"sources":91,"tags":92},"https://git.kernel.org/stable/c/b5332a9f3f3d884a1b646ce155e664cc558c1722",[74,68],[76],[],{"date":95,"score":64,"percentile":96},"2026-06-03",0.03006,[98,101,104,107,110,113,116,119,122,125,128,131,134,137,140,144,147,150,153,156,159,162,165,168,171,174,177,180,183,186,189,191,194,197,200,202,205,208,211,214,217,220,223,225,228,231,234,236,239,242,245,248,251,254,257,260,263,266,269,272,275,278,280,284,287,290,293,296,298,301,304,307,310,312,314,316,319,321,324,327,329,331,334,337,340,343,346,349,352,355],{"date":99,"score":64,"percentile":100},"2025-11-04",0.01895,{"date":102,"score":64,"percentile":103},"2025-11-05",0.01921,{"date":105,"score":64,"percentile":106},"2025-11-06",0.01942,{"date":108,"score":64,"percentile":109},"2025-11-07",0.01948,{"date":111,"score":64,"percentile":112},"2025-11-08",0.01951,{"date":114,"score":64,"percentile":115},"2025-11-09",0.01952,{"date":117,"score":64,"percentile":118},"2025-11-10",0.01937,{"date":120,"score":64,"percentile":121},"2025-11-11",0.01949,{"date":123,"score":64,"percentile":124},"2025-11-12",0.01963,{"date":126,"score":64,"percentile":127},"2025-11-13",0.01981,{"date":129,"score":64,"percentile":130},"2025-11-14",0.01984,{"date":132,"score":64,"percentile":133},"2025-11-15",0.02002,{"date":135,"score":64,"percentile":136},"2025-11-16",0.02006,{"date":138,"score":64,"percentile":139},"2025-11-17",0.01993,{"date":141,"score":142,"percentile":143},"2025-11-18",0.0007,0.17334,{"date":145,"score":142,"percentile":146},"2025-11-19",0.17353,{"date":148,"score":142,"percentile":149},"2025-11-20",0.17329,{"date":151,"score":64,"percentile":152},"2025-11-21",0.02053,{"date":154,"score":64,"percentile":155},"2025-11-22",0.02051,{"date":157,"score":64,"percentile":158},"2025-11-23",0.02048,{"date":160,"score":64,"percentile":161},"2025-11-24",0.02033,{"date":163,"score":64,"percentile":164},"2025-11-25",0.02028,{"date":166,"score":64,"percentile":167},"2025-11-26",0.01991,{"date":169,"score":64,"percentile":170},"2025-11-27",0.01989,{"date":172,"score":64,"percentile":173},"2025-11-28",0.01986,{"date":175,"score":64,"percentile":176},"2025-11-29",0.02034,{"date":178,"score":64,"percentile":179},"2025-11-30",0.02042,{"date":181,"score":64,"percentile":182},"2025-12-01",0.02095,{"date":184,"score":64,"percentile":185},"2025-12-02",0.02092,{"date":187,"score":64,"percentile":188},"2025-12-03",0.02099,{"date":190,"score":64,"percentile":158},"2025-12-04",{"date":192,"score":64,"percentile":193},"2025-12-05",0.02061,{"date":195,"score":64,"percentile":196},"2025-12-06",0.02064,{"date":198,"score":64,"percentile":199},"2025-12-07",0.02062,{"date":201,"score":64,"percentile":196},"2025-12-08",{"date":203,"score":64,"percentile":204},"2025-12-09",0.02082,{"date":206,"score":64,"percentile":207},"2025-12-10",0.02114,{"date":209,"score":64,"percentile":210},"2025-12-11",0.02113,{"date":212,"score":64,"percentile":213},"2025-12-12",0.02119,{"date":215,"score":64,"percentile":216},"2025-12-13",0.02106,{"date":218,"score":64,"percentile":219},"2025-12-14",0.0211,{"date":221,"score":64,"percentile":222},"2025-12-15",0.02098,{"date":224,"score":64,"percentile":185},"2025-12-16",{"date":226,"score":64,"percentile":227},"2025-12-17",0.02108,{"date":229,"score":64,"percentile":230},"2025-12-18",0.02109,{"date":232,"score":64,"percentile":233},"2025-12-19",0.02111,{"date":235,"score":64,"percentile":210},"2025-12-20",{"date":237,"score":64,"percentile":238},"2025-12-21",0.02124,{"date":240,"score":64,"percentile":241},"2025-12-22",0.02121,{"date":243,"score":64,"percentile":244},"2025-12-23",0.02122,{"date":246,"score":64,"percentile":247},"2025-12-24",0.0213,{"date":249,"score":64,"percentile":250},"2025-12-25",0.02137,{"date":252,"score":64,"percentile":253},"2025-12-26",0.02141,{"date":255,"score":64,"percentile":256},"2025-12-27",0.0212,{"date":258,"score":64,"percentile":259},"2025-12-28",0.02143,{"date":261,"score":64,"percentile":262},"2025-12-29",0.02134,{"date":264,"score":64,"percentile":265},"2025-12-30",0.02128,{"date":267,"score":64,"percentile":268},"2025-12-31",0.02125,{"date":270,"score":64,"percentile":271},"2026-01-01",0.02175,{"date":273,"score":64,"percentile":274},"2026-01-02",0.02173,{"date":276,"score":64,"percentile":277},"2026-01-03",0.02177,{"date":279,"score":64,"percentile":256},"2026-01-04",{"date":281,"score":282,"percentile":283},"2026-01-05",0.00009,0.00603,{"date":285,"score":282,"percentile":286},"2026-01-06",0.00604,{"date":288,"score":282,"percentile":289},"2026-01-07",0.00602,{"date":291,"score":282,"percentile":292},"2026-01-08",0.00606,{"date":294,"score":282,"percentile":295},"2026-01-09",0.00613,{"date":297,"score":282,"percentile":295},"2026-01-10",{"date":299,"score":282,"percentile":300},"2026-01-11",0.00614,{"date":302,"score":282,"percentile":303},"2026-01-12",0.00612,{"date":305,"score":282,"percentile":306},"2026-01-13",0.00611,{"date":308,"score":282,"percentile":309},"2026-01-14",0.0061,{"date":311,"score":282,"percentile":306},"2026-01-15",{"date":313,"score":282,"percentile":309},"2026-01-16",{"date":315,"score":282,"percentile":303},"2026-01-17",{"date":317,"score":282,"percentile":318},"2026-01-18",0.00615,{"date":320,"score":282,"percentile":309},"2026-01-19",{"date":322,"score":282,"percentile":323},"2026-01-20",0.00607,{"date":325,"score":282,"percentile":326},"2026-01-21",0.00605,{"date":328,"score":282,"percentile":292},"2026-01-22",{"date":330,"score":282,"percentile":300},"2026-01-23",{"date":332,"score":282,"percentile":333},"2026-01-24",0.00617,{"date":335,"score":282,"percentile":336},"2026-01-25",0.00619,{"date":338,"score":282,"percentile":339},"2026-01-26",0.0062,{"date":341,"score":282,"percentile":342},"2026-01-27",0.00624,{"date":344,"score":282,"percentile":345},"2026-01-28",0.00622,{"date":347,"score":282,"percentile":348},"2026-01-29",0.00626,{"date":350,"score":282,"percentile":351},"2026-01-30",0.00637,{"date":353,"score":64,"percentile":354},"2026-01-31",0.02192,{"date":356,"score":64,"percentile":357},"2026-02-01",0.02237,[359],{"source":68,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":360,"cvss_v4_0":9},{"baseScore":66,"baseSeverity":361,"vectorString":69,"impactScore":362,"exploitabilityScore":363},"MEDIUM",6,4.6,[365,391],{"ecosystem":9,"name":366,"vendor":367,"product":367,"cpe_part":368,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":369},"Linux","linux","a",[370,377,380,383,386,389],{"version":371,"is_range":372,"range_type":74,"version_start":373,"version_start_type":374,"version_end":375,"version_end_type":376,"fixed_in":9},">= 872d26a391da92ed8f0c0f5cb5fef428067b7f30, \u003C 999d606a820c36ae9b9e9611360c8b3d8d4bb777",true,"872d26a391da92ed8f0c0f5cb5fef428067b7f30","including","999d606a820c36ae9b9e9611360c8b3d8d4bb777","excluding",{"version":378,"is_range":372,"range_type":74,"version_start":373,"version_start_type":374,"version_end":379,"version_end_type":376,"fixed_in":9},">= 872d26a391da92ed8f0c0f5cb5fef428067b7f30, \u003C 60ade0d56b06537a28884745059b3801c78e03bc","60ade0d56b06537a28884745059b3801c78e03bc",{"version":381,"is_range":372,"range_type":74,"version_start":373,"version_start_type":374,"version_end":382,"version_end_type":376,"fixed_in":9},">= 872d26a391da92ed8f0c0f5cb5fef428067b7f30, \u003C 06beaa1a9f6e501213195e47c30416032fd2bbd5","06beaa1a9f6e501213195e47c30416032fd2bbd5",{"version":384,"is_range":372,"range_type":74,"version_start":373,"version_start_type":374,"version_end":385,"version_end_type":376,"fixed_in":9},">= 872d26a391da92ed8f0c0f5cb5fef428067b7f30, \u003C 906c538340dde6d891df89fe7dac8eaa724e40da","906c538340dde6d891df89fe7dac8eaa724e40da",{"version":387,"is_range":372,"range_type":74,"version_start":373,"version_start_type":374,"version_end":388,"version_end_type":376,"fixed_in":9},">= 872d26a391da92ed8f0c0f5cb5fef428067b7f30, \u003C b5332a9f3f3d884a1b646ce155e664cc558c1722","b5332a9f3f3d884a1b646ce155e664cc558c1722",{"version":390,"is_range":62,"range_type":74,"version_start":390,"version_start_type":374,"version_end":390,"version_end_type":374,"fixed_in":9},"5.0",{"ecosystem":9,"name":392,"vendor":367,"product":393,"cpe_part":394,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":395},"linux kernel","linux_kernel","o",[396,400,404,408],{"version":397,"is_range":372,"range_type":398,"version_start":390,"version_start_type":374,"version_end":399,"version_end_type":376,"fixed_in":9},"gte5.0_lt5.4.119","cpe","5.4.119",{"version":401,"is_range":372,"range_type":398,"version_start":402,"version_start_type":374,"version_end":403,"version_end_type":376,"fixed_in":9},"gte5.5_lt5.10.37","5.5","5.10.37",{"version":405,"is_range":372,"range_type":398,"version_start":406,"version_start_type":374,"version_end":407,"version_end_type":376,"fixed_in":9},"gte5.11_lt5.11.21","5.11","5.11.21",{"version":409,"is_range":372,"range_type":398,"version_start":410,"version_start_type":374,"version_end":411,"version_end_type":376,"fixed_in":9},"gte5.12_lt5.12.4","5.12","5.12.4"]