[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2021-47103":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T02:53:27.892Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":20,"aliases":54,"duplicate_of":9,"upstream":55,"downstream":56,"duplicates":83,"related":84,"reserved_at":9,"published_at":91,"modified_at":92,"state":93,"summary":94,"references_raw":102,"kevs":128,"epss":129,"epss_history":132,"metrics":405,"affected":411},"CVE-2021-47103","In the Linux kernel, the following vulnerability has been resolved:\n\ninet: fully convert sk->sk_rx_dst to RCU rules\n\nsyzbot reported various issues around early demux,\none being included in this changelog [1]\n\nsk->sk_rx_dst is using RCU protection without clearly\ndocumenting it.\n\nAnd following sequences in tcp_v4_do_rcv()/tcp_v6_do_rcv()\nare not following standard RCU rules.\n\n[a]    dst_release(dst);\n[b]    sk->sk_rx_dst = NULL;\n\nThey look wrong because a delete operation of RCU protected\npointer is supposed to clear the pointer before\nthe call_rcu()/synchronize_rcu() guarding actual memory freeing.\n\nIn some cases indeed, dst could be freed before [b] is done.\n\nWe could cheat by clearing sk_rx_dst before calling\ndst_release(), but this seems the right time to stick\nto standard RCU annotations and debugging facilities.\n\n[1]\nBUG: KASAN: use-after-free in dst_check include/net/dst.h:470 [inline]\nBUG: KASAN: use-after-free in tcp_v4_early_demux+0x95b/0x960 net/ipv4/tcp_ipv4.c:1792\nRead of size 2 at addr ffff88807f1cb73a by task syz-executor.5/9204\n\nCPU: 0 PID: 9204 Comm: syz-executor.5 Not tainted 5.16.0-rc5-syzkaller #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011\nCall Trace:\n \u003CTASK>\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0xcd/0x134 lib/dump_stack.c:106\n print_address_description.constprop.0.cold+0x8d/0x320 mm/kasan/report.c:247\n __kasan_report mm/kasan/report.c:433 [inline]\n kasan_report.cold+0x83/0xdf mm/kasan/report.c:450\n dst_check include/net/dst.h:470 [inline]\n tcp_v4_early_demux+0x95b/0x960 net/ipv4/tcp_ipv4.c:1792\n ip_rcv_finish_core.constprop.0+0x15de/0x1e80 net/ipv4/ip_input.c:340\n ip_list_rcv_finish.constprop.0+0x1b2/0x6e0 net/ipv4/ip_input.c:583\n ip_sublist_rcv net/ipv4/ip_input.c:609 [inline]\n ip_list_rcv+0x34e/0x490 net/ipv4/ip_input.c:644\n __netif_receive_skb_list_ptype net/core/dev.c:5508 [inline]\n __netif_receive_skb_list_core+0x549/0x8e0 net/core/dev.c:5556\n __netif_receive_skb_list net/core/dev.c:5608 [inline]\n netif_receive_skb_list_internal+0x75e/0xd80 net/core/dev.c:5699\n gro_normal_list net/core/dev.c:5853 [inline]\n gro_normal_list net/core/dev.c:5849 [inline]\n napi_complete_done+0x1f1/0x880 net/core/dev.c:6590\n virtqueue_napi_complete drivers/net/virtio_net.c:339 [inline]\n virtnet_poll+0xca2/0x11b0 drivers/net/virtio_net.c:1557\n __napi_poll+0xaf/0x440 net/core/dev.c:7023\n napi_poll net/core/dev.c:7090 [inline]\n net_rx_action+0x801/0xb40 net/core/dev.c:7177\n __do_softirq+0x29b/0x9c2 kernel/softirq.c:558\n invoke_softirq kernel/softirq.c:432 [inline]\n __irq_exit_rcu+0x123/0x180 kernel/softirq.c:637\n irq_exit_rcu+0x5/0x20 kernel/softirq.c:649\n common_interrupt+0x52/0xc0 arch/x86/kernel/irq.c:240\n asm_common_interrupt+0x1e/0x40 arch/x86/include/asm/idtentry.h:629\nRIP: 0033:0x7f5e972bfd57\nCode: 39 d1 73 14 0f 1f 80 00 00 00 00 48 8b 50 f8 48 83 e8 08 48 39 ca 77 f3 48 39 c3 73 3e 48 89 13 48 8b 50 f8 48 89 38 49 8b 0e \u003C48> 8b 3e 48 83 c3 08 48 83 c6 08 eb bc 48 39 d1 72 9e 48 39 d0 73\nRSP: 002b:00007fff8a413210 EFLAGS: 00000283\nRAX: 00007f5e97108990 RBX: 00007f5e97108338 RCX: ffffffff81d3aa45\nRDX: ffffffff81d3aa45 RSI: 00007f5e97108340 RDI: ffffffff81d3aa45\nRBP: 00007f5e97107eb8 R08: 00007f5e97108d88 R09: 0000000093c2e8d9\nR10: 0000000000000000 R11: 0000000000000000 R12: 00007f5e97107eb0\nR13: 00007f5e97108338 R14: 00007f5e97107ea8 R15: 0000000000000019\n \u003C/TASK>\n\nAllocated by task 13:\n kasan_save_stack+0x1e/0x50 mm/kasan/common.c:38\n kasan_set_track mm/kasan/common.c:46 [inline]\n set_alloc_info mm/kasan/common.c:434 [inline]\n __kasan_slab_alloc+0x90/0xc0 mm/kasan/common.c:467\n kasan_slab_alloc include/linux/kasan.h:259 [inline]\n slab_post_alloc_hook mm/slab.h:519 [inline]\n slab_alloc_node mm/slub.c:3234 [inline]\n slab_alloc mm/slub.c:3242 [inline]\n kmem_cache_alloc+0x202/0x3a0 mm/slub.c:3247\n dst_alloc+0x146/0x1f0 net/core/dst.c:92\n rt_dst_alloc+0x73/0x430 net/ipv4/route.c:1613\n ip_route_input_slow+0x1817/0x3a20 net/ipv4/route.c:234\n---truncated---",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-416","Use After Free","The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory \"belongs\" to the code that operates on the new pointer.","weakness","Stable","Variant","High",[],[21,30,34,38,42,46,50],{"_key":22,"name":23,"source":24,"url":25,"maturity":26,"reliability_score":27,"verified":28,"type":9,"platforms":29,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_C3BFC51527D56618","Exploit Reference (git.kernel.org)","reference","https://git.kernel.org/stable/c/68c34ce11ef23328692aa35fa6aaafdd75913100","unknown",0.2,false,[],{"_key":31,"name":23,"source":24,"url":32,"maturity":26,"reliability_score":27,"verified":28,"type":9,"platforms":33,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_A3E6A67533FE458A","https://git.kernel.org/stable/c/92e6e36ecd16808866ac6172b9491b5097cde449",[],{"_key":35,"name":23,"source":24,"url":36,"maturity":26,"reliability_score":27,"verified":28,"type":9,"platforms":37,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_5E03A81FD89B2992","https://git.kernel.org/stable/c/75a578000ae5e511e5d0e8433c94a14d9c99c412",[],{"_key":39,"name":23,"source":24,"url":40,"maturity":26,"reliability_score":27,"verified":28,"type":9,"platforms":41,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_5E053CF67EB392E2","https://git.kernel.org/stable/c/c3bb4a7e8cbc984e1cdac0fe6af60e880214ed6e",[],{"_key":43,"name":23,"source":24,"url":44,"maturity":26,"reliability_score":27,"verified":28,"type":9,"platforms":45,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_7DE7C859A6914CE4","https://git.kernel.org/stable/c/f039b43cbaea5e0700980c2f0052da05a70782e0",[],{"_key":47,"name":23,"source":24,"url":48,"maturity":26,"reliability_score":27,"verified":28,"type":9,"platforms":49,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_5439AE6F7CDFF585","https://git.kernel.org/stable/c/0249a4b8a554f2eb6a27b62516fa50168584faa4",[],{"_key":51,"name":23,"source":24,"url":52,"maturity":26,"reliability_score":27,"verified":28,"type":9,"platforms":53,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_5B1873AD7F7C94ED","https://git.kernel.org/stable/c/8f905c0e7354ef261360fb7535ea079b1082c105",[],[],[],[57,59,61,63,65,67,69,71,73,75,77,79,81],{"_key":58},"SUSE-SU-2024:2894-1",{"_key":60},"SUSE-SU-2024:2360-1",{"_key":62},"SUSE-SU-2024:2381-1",{"_key":64},"SUSE-SU-2024:2561-1",{"_key":66},"SUSE-SU-2024:2939-1",{"_key":68},"SUSE-SU-2024:2947-1",{"_key":70},"RHSA-2022:7683",{"_key":72},"RHSA-2022:8267",{"_key":74},"DEBIAN-CVE-2021-47103",{"_key":76},"UBUNTU-CVE-2021-47103",{"_key":78},"USN-7332-1",{"_key":80},"USN-7332-2",{"_key":82},"USN-7332-3",[],[85,86,87,88,89,90],{"_key":58},{"_key":60},{"_key":62},{"_key":64},{"_key":66},{"_key":68},"2024-03-04T18:10:57.116Z","2026-05-11T13:48:07.303Z","Analyzed",{"cisa_kev":28,"cisa_ransomware":28,"cisa_vendor":9,"epss_severity":95,"epss_score":96,"severity":97,"severity_score":98,"severity_version":99,"severity_source":100,"severity_vector":101,"severity_status":93},"low",0.00036,"high",7.8,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",[103,110,113,116,119,122,125],{"url":25,"sources":104,"tags":106},[105,100],"cve.org",[107,108,109],"Exploit","Mailing List","Patch",{"url":32,"sources":111,"tags":112},[105,100],[107,108,109],{"url":36,"sources":114,"tags":115},[105,100],[107,108,109],{"url":40,"sources":117,"tags":118},[105,100],[107,108,109],{"url":44,"sources":120,"tags":121},[105,100],[107,108,109],{"url":48,"sources":123,"tags":124},[105,100],[107,108,109],{"url":52,"sources":126,"tags":127},[105,100],[107,108,109],[],{"date":130,"score":96,"percentile":131},"2026-06-03",0.11176,[133,137,140,143,146,149,152,155,158,161,164,167,170,173,176,180,183,186,189,192,195,198,201,204,207,209,212,215,218,221,224,227,230,233,236,239,242,245,248,251,254,257,261,264,267,270,273,276,279,282,285,288,291,294,297,300,303,306,309,312,315,318,321,324,327,330,333,336,339,342,345,349,352,355,358,361,364,367,370,373,376,379,381,384,387,390,393,396,399,402],{"date":134,"score":135,"percentile":136},"2025-11-04",0.00027,0.06126,{"date":138,"score":135,"percentile":139},"2025-11-05",0.06148,{"date":141,"score":135,"percentile":142},"2025-11-06",0.06264,{"date":144,"score":135,"percentile":145},"2025-11-07",0.06279,{"date":147,"score":135,"percentile":148},"2025-11-08",0.06281,{"date":150,"score":135,"percentile":151},"2025-11-09",0.06269,{"date":153,"score":135,"percentile":154},"2025-11-10",0.06245,{"date":156,"score":135,"percentile":157},"2025-11-11",0.06271,{"date":159,"score":135,"percentile":160},"2025-11-12",0.06315,{"date":162,"score":135,"percentile":163},"2025-11-13",0.06346,{"date":165,"score":135,"percentile":166},"2025-11-14",0.0637,{"date":168,"score":135,"percentile":169},"2025-11-15",0.06399,{"date":171,"score":135,"percentile":172},"2025-11-16",0.06415,{"date":174,"score":135,"percentile":175},"2025-11-17",0.0641,{"date":177,"score":178,"percentile":179},"2025-11-18",0.00132,0.27578,{"date":181,"score":178,"percentile":182},"2025-11-19",0.27601,{"date":184,"score":178,"percentile":185},"2025-11-20",0.27612,{"date":187,"score":135,"percentile":188},"2025-11-21",0.06528,{"date":190,"score":135,"percentile":191},"2025-11-22",0.06495,{"date":193,"score":135,"percentile":194},"2025-11-23",0.06475,{"date":196,"score":135,"percentile":197},"2025-11-24",0.06452,{"date":199,"score":135,"percentile":200},"2025-11-25",0.06447,{"date":202,"score":135,"percentile":203},"2025-11-26",0.06461,{"date":205,"score":135,"percentile":206},"2025-11-27",0.06465,{"date":208,"score":135,"percentile":200},"2025-11-28",{"date":210,"score":135,"percentile":211},"2025-11-29",0.06489,{"date":213,"score":135,"percentile":214},"2025-11-30",0.06485,{"date":216,"score":135,"percentile":217},"2025-12-01",0.06539,{"date":219,"score":135,"percentile":220},"2025-12-02",0.0655,{"date":222,"score":135,"percentile":223},"2025-12-03",0.06564,{"date":225,"score":135,"percentile":226},"2025-12-04",0.06536,{"date":228,"score":135,"percentile":229},"2025-12-05",0.06588,{"date":231,"score":135,"percentile":232},"2025-12-06",0.06598,{"date":234,"score":135,"percentile":235},"2025-12-07",0.06602,{"date":237,"score":135,"percentile":238},"2025-12-08",0.06599,{"date":240,"score":135,"percentile":241},"2025-12-09",0.06656,{"date":243,"score":135,"percentile":244},"2025-12-10",0.06724,{"date":246,"score":135,"percentile":247},"2025-12-11",0.06727,{"date":249,"score":135,"percentile":250},"2025-12-12",0.06735,{"date":252,"score":135,"percentile":253},"2025-12-13",0.06761,{"date":255,"score":135,"percentile":256},"2025-12-14",0.06743,{"date":258,"score":259,"percentile":260},"2025-12-15",0.0003,0.07851,{"date":262,"score":259,"percentile":263},"2025-12-16",0.07877,{"date":265,"score":259,"percentile":266},"2025-12-17",0.07956,{"date":268,"score":259,"percentile":269},"2025-12-18",0.08017,{"date":271,"score":259,"percentile":272},"2025-12-19",0.08002,{"date":274,"score":259,"percentile":275},"2025-12-20",0.07987,{"date":277,"score":259,"percentile":278},"2025-12-21",0.07959,{"date":280,"score":259,"percentile":281},"2025-12-22",0.07913,{"date":283,"score":259,"percentile":284},"2025-12-23",0.07922,{"date":286,"score":259,"percentile":287},"2025-12-24",0.07939,{"date":289,"score":259,"percentile":290},"2025-12-25",0.08012,{"date":292,"score":259,"percentile":293},"2025-12-26",0.08021,{"date":295,"score":259,"percentile":296},"2025-12-27",0.08011,{"date":298,"score":259,"percentile":299},"2025-12-28",0.08018,{"date":301,"score":259,"percentile":302},"2025-12-29",0.07998,{"date":304,"score":259,"percentile":305},"2025-12-30",0.07974,{"date":307,"score":259,"percentile":308},"2025-12-31",0.08006,{"date":310,"score":259,"percentile":311},"2026-01-01",0.08073,{"date":313,"score":259,"percentile":314},"2026-01-02",0.08075,{"date":316,"score":259,"percentile":317},"2026-01-03",0.08074,{"date":319,"score":259,"percentile":320},"2026-01-04",0.08009,{"date":322,"score":259,"percentile":323},"2026-01-05",0.0796,{"date":325,"score":259,"percentile":326},"2026-01-06",0.07947,{"date":328,"score":259,"percentile":329},"2026-01-07",0.07981,{"date":331,"score":259,"percentile":332},"2026-01-08",0.08055,{"date":334,"score":259,"percentile":335},"2026-01-09",0.08069,{"date":337,"score":259,"percentile":338},"2026-01-10",0.08093,{"date":340,"score":259,"percentile":341},"2026-01-11",0.0808,{"date":343,"score":259,"percentile":344},"2026-01-12",0.08057,{"date":346,"score":347,"percentile":348},"2026-01-13",0.00025,0.06193,{"date":350,"score":347,"percentile":351},"2026-01-14",0.06246,{"date":353,"score":347,"percentile":354},"2026-01-15",0.06251,{"date":356,"score":347,"percentile":357},"2026-01-16",0.06262,{"date":359,"score":347,"percentile":360},"2026-01-17",0.0627,{"date":362,"score":347,"percentile":363},"2026-01-18",0.06268,{"date":365,"score":347,"percentile":366},"2026-01-19",0.06248,{"date":368,"score":347,"percentile":369},"2026-01-20",0.06206,{"date":371,"score":347,"percentile":372},"2026-01-21",0.06199,{"date":374,"score":347,"percentile":375},"2026-01-22",0.06165,{"date":377,"score":347,"percentile":378},"2026-01-23",0.06225,{"date":380,"score":347,"percentile":357},"2026-01-24",{"date":382,"score":347,"percentile":383},"2026-01-25",0.06209,{"date":385,"score":347,"percentile":386},"2026-01-26",0.06194,{"date":388,"score":347,"percentile":389},"2026-01-27",0.06172,{"date":391,"score":347,"percentile":392},"2026-01-28",0.06147,{"date":394,"score":347,"percentile":395},"2026-01-29",0.06153,{"date":397,"score":347,"percentile":398},"2026-01-30",0.06156,{"date":400,"score":347,"percentile":401},"2026-01-31",0.06142,{"date":403,"score":347,"percentile":404},"2026-02-01",0.06182,[406],{"source":100,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":407,"cvss_v4_0":9},{"baseScore":98,"baseSeverity":408,"vectorString":101,"impactScore":409,"exploitabilityScore":410},"HIGH",9.8,4.6,[412,444],{"ecosystem":9,"name":413,"vendor":414,"product":414,"cpe_part":415,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":416},"Linux","linux","a",[417,424,427,430,433,436,439,442],{"version":418,"is_range":419,"range_type":105,"version_start":420,"version_start_type":421,"version_end":422,"version_end_type":423,"fixed_in":9},">= 41063e9dd11956f2d285e12e4342e1d232ba0ea2, \u003C 68c34ce11ef23328692aa35fa6aaafdd75913100",true,"41063e9dd11956f2d285e12e4342e1d232ba0ea2","including","68c34ce11ef23328692aa35fa6aaafdd75913100","excluding",{"version":425,"is_range":419,"range_type":105,"version_start":420,"version_start_type":421,"version_end":426,"version_end_type":423,"fixed_in":9},">= 41063e9dd11956f2d285e12e4342e1d232ba0ea2, \u003C 92e6e36ecd16808866ac6172b9491b5097cde449","92e6e36ecd16808866ac6172b9491b5097cde449",{"version":428,"is_range":419,"range_type":105,"version_start":420,"version_start_type":421,"version_end":429,"version_end_type":423,"fixed_in":9},">= 41063e9dd11956f2d285e12e4342e1d232ba0ea2, \u003C 75a578000ae5e511e5d0e8433c94a14d9c99c412","75a578000ae5e511e5d0e8433c94a14d9c99c412",{"version":431,"is_range":419,"range_type":105,"version_start":420,"version_start_type":421,"version_end":432,"version_end_type":423,"fixed_in":9},">= 41063e9dd11956f2d285e12e4342e1d232ba0ea2, \u003C c3bb4a7e8cbc984e1cdac0fe6af60e880214ed6e","c3bb4a7e8cbc984e1cdac0fe6af60e880214ed6e",{"version":434,"is_range":419,"range_type":105,"version_start":420,"version_start_type":421,"version_end":435,"version_end_type":423,"fixed_in":9},">= 41063e9dd11956f2d285e12e4342e1d232ba0ea2, \u003C f039b43cbaea5e0700980c2f0052da05a70782e0","f039b43cbaea5e0700980c2f0052da05a70782e0",{"version":437,"is_range":419,"range_type":105,"version_start":420,"version_start_type":421,"version_end":438,"version_end_type":423,"fixed_in":9},">= 41063e9dd11956f2d285e12e4342e1d232ba0ea2, \u003C 0249a4b8a554f2eb6a27b62516fa50168584faa4","0249a4b8a554f2eb6a27b62516fa50168584faa4",{"version":440,"is_range":419,"range_type":105,"version_start":420,"version_start_type":421,"version_end":441,"version_end_type":423,"fixed_in":9},">= 41063e9dd11956f2d285e12e4342e1d232ba0ea2, \u003C 8f905c0e7354ef261360fb7535ea079b1082c105","8f905c0e7354ef261360fb7535ea079b1082c105",{"version":443,"is_range":28,"range_type":105,"version_start":443,"version_start_type":421,"version_end":443,"version_end_type":421,"fixed_in":9},"3.6",{"ecosystem":9,"name":445,"vendor":414,"product":446,"cpe_part":447,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":448},"linux kernel","linux_kernel","o",[449,453,457,461,465,469,473,475,477,479,481,483],{"version":450,"is_range":419,"range_type":451,"version_start":443,"version_start_type":421,"version_end":452,"version_end_type":423,"fixed_in":9},"gte3.6_lt4.9.331","cpe","4.9.331",{"version":454,"is_range":419,"range_type":451,"version_start":455,"version_start_type":421,"version_end":456,"version_end_type":423,"fixed_in":9},"gte4.10_lt4.14.296","4.10","4.14.296",{"version":458,"is_range":419,"range_type":451,"version_start":459,"version_start_type":421,"version_end":460,"version_end_type":423,"fixed_in":9},"gte4.15_lt4.19.262","4.15","4.19.262",{"version":462,"is_range":419,"range_type":451,"version_start":463,"version_start_type":421,"version_end":464,"version_end_type":423,"fixed_in":9},"gte4.20_lt5.4.220","4.20","5.4.220",{"version":466,"is_range":419,"range_type":451,"version_start":467,"version_start_type":421,"version_end":468,"version_end_type":423,"fixed_in":9},"gte5.5_lt5.10.150","5.5","5.10.150",{"version":470,"is_range":419,"range_type":451,"version_start":471,"version_start_type":421,"version_end":472,"version_end_type":423,"fixed_in":9},"gte5.11_lt5.15.12","5.11","5.15.12",{"version":474,"is_range":28,"range_type":451,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.16:rc1",{"version":476,"is_range":28,"range_type":451,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.16:rc2",{"version":478,"is_range":28,"range_type":451,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.16:rc3",{"version":480,"is_range":28,"range_type":451,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.16:rc4",{"version":482,"is_range":28,"range_type":451,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.16:rc5",{"version":484,"is_range":28,"range_type":451,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.16:rc6"]