CVE-2021-47468

Advisory lineage Upstream: 0 Downstream: 17
Analyzed
Published: 22 May 2024, 06:23
Last modified:11 May 2026, 13:55

Vulnerability Summary

Overall Risk (default)
low
22/100
CVSS Score
5.5 MEDIUM
v3.1 (nvd)
EPSS Score
0.02% LOW
0% probability 0.00%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

22 May 2024, 06:23
Published
Vulnerability first disclosed
11 May 2026, 13:55
Last Modified
Vulnerability information updated

Description

In the Linux kernel, the following vulnerability has been resolved: isdn: mISDN: Fix sleeping function called from invalid context The driver can call card->isac.release() function from an atomic context. Fix this by calling this function after releasing the lock. The following log reveals it: [ 44.168226 ] BUG: sleeping function called from invalid context at kernel/workqueue.c:3018 [ 44.168941 ] in_atomic(): 1, irqs_disabled(): 1, non_block: 0, pid: 5475, name: modprobe [ 44.169574 ] INFO: lockdep is turned off. [ 44.169899 ] irq event stamp: 0 [ 44.170160 ] hardirqs last enabled at (0): [<0000000000000000>] 0x0 [ 44.170627 ] hardirqs last disabled at (0): [<ffffffff814209ed>] copy_process+0x132d/0x3e00 [ 44.171240 ] softirqs last enabled at (0): [<ffffffff81420a1a>] copy_process+0x135a/0x3e00 [ 44.171852 ] softirqs last disabled at (0): [<0000000000000000>] 0x0 [ 44.172318 ] Preemption disabled at: [ 44.172320 ] [<ffffffffa009b0a9>] nj_release+0x69/0x500 [netjet] [ 44.174441 ] Call Trace: [ 44.174630 ] dump_stack_lvl+0xa8/0xd1 [ 44.174912 ] dump_stack+0x15/0x17 [ 44.175166 ] ___might_sleep+0x3a2/0x510 [ 44.175459 ] ? nj_release+0x69/0x500 [netjet] [ 44.175791 ] __might_sleep+0x82/0xe0 [ 44.176063 ] ? start_flush_work+0x20/0x7b0 [ 44.176375 ] start_flush_work+0x33/0x7b0 [ 44.176672 ] ? trace_irq_enable_rcuidle+0x85/0x170 [ 44.177034 ] ? kasan_quarantine_put+0xaa/0x1f0 [ 44.177372 ] ? kasan_quarantine_put+0xaa/0x1f0 [ 44.177711 ] __flush_work+0x11a/0x1a0 [ 44.177991 ] ? flush_work+0x20/0x20 [ 44.178257 ] ? lock_release+0x13c/0x8f0 [ 44.178550 ] ? __kasan_check_write+0x14/0x20 [ 44.178872 ] ? do_raw_spin_lock+0x148/0x360 [ 44.179187 ] ? read_lock_is_recursive+0x20/0x20 [ 44.179530 ] ? __kasan_check_read+0x11/0x20 [ 44.179846 ] ? do_raw_spin_unlock+0x55/0x900 [ 44.180168 ] ? ____kasan_slab_free+0x116/0x140 [ 44.180505 ] ? _raw_spin_unlock_irqrestore+0x41/0x60 [ 44.180878 ] ? skb_queue_purge+0x1a3/0x1c0 [ 44.181189 ] ? kfree+0x13e/0x290 [ 44.181438 ] flush_work+0x17/0x20 [ 44.181695 ] mISDN_freedchannel+0xe8/0x100 [ 44.182006 ] isac_release+0x210/0x260 [mISDNipac] [ 44.182366 ] nj_release+0xf6/0x500 [netjet] [ 44.182685 ] nj_remove+0x48/0x70 [netjet] [ 44.182989 ] pci_device_remove+0xa9/0x250

CVSS Metrics

  • v3.1MEDIUMScore: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS Trends

Current EPSS score: 0.02% Percentile: 4%

Techniques & Countermeasures

  • CWE-667Improper Locking

    The product does not properly acquire or release a lock on a resource, leading to unexpected resource state changes and behaviors.

Affected Systems

  • linuxlinux

    ≥ a900845e56617edc005fd8f35bfd5a407aaf96c8, < 6f95c97e0f9d6eb39c3f2cb45e8fa4268d1b372b | ≥ a900845e56617edc005fd8f35bfd5a407aaf96c8, < ef269a8808cb1759245a98a7fe16fceaebad894c | ≥ a900845e56617edc005fd8f35bfd5a407aaf96c8, < 37e4f57b22cc5ebb3f80cf0f74fdeb487f082367 | ≥ a900845e56617edc005fd8f35bfd5a407aaf96c8, < a5b34409d3fc52114c828be4adbc30744fa3258b | ≥ a900845e56617edc005fd8f35bfd5a407aaf96c8, < 4054b869dc263228d30a4755800b78f0f2ba0c89 | ≥ a900845e56617edc005fd8f35bfd5a407aaf96c8, < 9f591cbdbed3d7822b2bdba89b34a6d7b434317d | ≥ a900845e56617edc005fd8f35bfd5a407aaf96c8, < f5966ba53013149bcf94e1536644a958dd00a026 | ≥ a900845e56617edc005fd8f35bfd5a407aaf96c8, < 6510e80a0b81b5d814e3aea6297ba42f5e76f73c | 2.6.32

  • linuxlinux_kernel

    < 4.4.290 | ≥ 4.5, < 4.9.288 | ≥ 4.10, < 4.14.253 | ≥ 4.15, < 4.19.214 | ≥ 4.20, < 5.4.156 | ≥ 5.5, < 5.10.76 | ≥ 5.11, < 5.14.15 | 5.15:rc1 | 5.15:rc2 | 5.15:rc3 | 5.15:rc4 | 5.15:rc5

References (8)