CVE-2021-47347
Vulnerability Summary
Timeline
Description
In the Linux kernel, the following vulnerability has been resolved: wl1251: Fix possible buffer overflow in wl1251_cmd_scan Function wl1251_cmd_scan calls memcpy without checking the length. Harden by checking the length is within the maximum allowed size.
CVSS Metrics
- v3.1•HIGH•Score: 8.8CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Trends
Current EPSS score: 0.14%• Percentile: 34%
Techniques & Countermeasures
- CWE-120•Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer.
Affected Systems
- linux•linux
≥ 2f01a1f58889fbfeb68b1bc1b52e4197f3333490, < 57ad99ae3c6738ba87bad259bb57c641ca68ebf6 | ≥ 2f01a1f58889fbfeb68b1bc1b52e4197f3333490, < d3d8b9c9c7843dce31e284927d4c9904fd5a510a | ≥ 2f01a1f58889fbfeb68b1bc1b52e4197f3333490, < 0f6c0488368c9ac1aa685821916fadba32f5d1ef | ≥ 2f01a1f58889fbfeb68b1bc1b52e4197f3333490, < 115103f6e3f1c26c473766c16439c7c8b235529a | ≥ 2f01a1f58889fbfeb68b1bc1b52e4197f3333490, < d71dddeb5380613f9ef199f3e7368fd78fb1a46e | ≥ 2f01a1f58889fbfeb68b1bc1b52e4197f3333490, < c5e4a10d7bd5d4f419d8b9705dff60cf69b302a1 | ≥ 2f01a1f58889fbfeb68b1bc1b52e4197f3333490, < 302e2ee34c5f7c5d805b7f835d9a6f2b43474e2a | ≥ 2f01a1f58889fbfeb68b1bc1b52e4197f3333490, < 40af3960a15339e8bbd3be50c3bc7b35e1a0b6ea | ≥ 2f01a1f58889fbfeb68b1bc1b52e4197f3333490, < d10a87a3535cce2b890897914f5d0d83df669c63 | 2.6.31
- linux•linux_kernel
< 4.4.276 | ≥ 4.5, < 4.9.276 | ≥ 4.10, < 4.14.240 | ≥ 4.15, < 4.19.198 | ≥ 4.20, < 5.4.133 | ≥ 5.5, < 5.10.51 | ≥ 5.11, < 5.12.18 | ≥ 5.13, < 5.13.3
References (9)
- https://git.kernel.org/stable/c/57ad99ae3c6738ba87bad259bb57c641ca68ebf6
- https://git.kernel.org/stable/c/d3d8b9c9c7843dce31e284927d4c9904fd5a510a
- https://git.kernel.org/stable/c/0f6c0488368c9ac1aa685821916fadba32f5d1ef
- https://git.kernel.org/stable/c/115103f6e3f1c26c473766c16439c7c8b235529a
- https://git.kernel.org/stable/c/d71dddeb5380613f9ef199f3e7368fd78fb1a46e
- https://git.kernel.org/stable/c/c5e4a10d7bd5d4f419d8b9705dff60cf69b302a1
- https://git.kernel.org/stable/c/302e2ee34c5f7c5d805b7f835d9a6f2b43474e2a
- https://git.kernel.org/stable/c/40af3960a15339e8bbd3be50c3bc7b35e1a0b6ea
- https://git.kernel.org/stable/c/d10a87a3535cce2b890897914f5d0d83df669c63