CVE-2021-47383: tty: Fix out-of-bound vmalloc access in imageblit

Published May 21, 2024
·
Updated

In the Linux kernel, the following vulnerability has been resolved:

tty: Fix out-of-bound vmalloc access in imageblit

The Linux kernel CVE team has assigned CVE-2021-47383 to this issue.

Upstream advisory: https://lore.kernel.org/linux-cve-announce/2024052144-CVE-2021-47383-a8f4@gregkh/T

Other sources

In the Linux kernel, the following vulnerability has been resolved:

tty: Fix out-of-bound vmalloc access in imageblit

This issue happens when a userspace program does an ioctl FBIOPUTVSCREENINFO passing the fbvarscreeninfo struct containing only the fields xres, yres, and bitsperpixel with values.

If this struct is the same as the previous ioctl, the vcresize() detects it and doesn't call the resizescreen(), leaving the fbvarscreeninfo incomplete. And this leads to the updatescrollmode() calculates a wrong value to fbcondisplay->vrows, which makes the realy() return a wrong value of y, and that value, eventually, causes the imageblit to access an out-of-bound address value.

To solve this issue I made the resizescreen() be called even if the screen does not need any resizing, so it will "fix and fill" the fbvarscreeninfo independently.

NVD

Linux Kernel could allow a local authenticated attacker to execute arbitrary code on the system, caused by an out-of-bound vmalloc access flaw in imageblit. By sending a specially crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system.

IBM

Affected Software

19 affected componentsFixes available
IBM Security Verify Governance<=ISVG 10.0.2
IBM Security Verify Governance, Identity Manager Software Stack<=ISVG 10.0.2
IBM Security Verify Governance, Identity Manager Virtual Appliance<=ISVG 10.0.2
IBM Security Verify Governance Identity Manager Container<=ISVG 10.0.2
redhat/kernel<4.4.286
4.4.286
redhat/kernel<4.9.285
4.9.285
redhat/kernel<4.14.249
4.14.249
redhat/kernel<4.19.209
4.19.209
redhat/kernel<5.4.151
5.4.151
redhat/kernel<5.10.71
5.10.71
redhat/kernel<5.14.10
5.14.10
redhat/kernel<5.15
5.15
Linux Linux kernel<4.4.286
Linux Linux kernel>=4.5<4.9.285
Linux Linux kernel>=4.10<4.14.249
Linux Linux kernel>=4.15<4.19.209
Linux Linux kernel>=4.20<5.4.151
Linux Linux kernel>=5.5<5.10.71
Linux Linux kernel>=5.11<5.14.10

Remediation

Patch Available

https://git.kernel.org/stable/c/067c694d06040db6f0c65281bb358452ca6d85b9

Patch Available

https://git.kernel.org/stable/c/3b0c406124719b625b1aba431659f5cdc24a982c

Patch Available

https://git.kernel.org/stable/c/699d926585daa6ec44be556cdc1ab89e5d54557b

Patch Available

https://git.kernel.org/stable/c/70aed03b1d5a5df974f456cdc8eedb213c94bb8b

Patch Available

https://git.kernel.org/stable/c/7e71fcedfda6f7de18f850a6b36e78d78b04476f

Patch Available

https://git.kernel.org/stable/c/883f7897a25e3ce14a7f274ca4c73f49ac84002a

Patch Available

https://git.kernel.org/stable/c/8a6a240f52e14356386030d8958ae8b1761d2325

Patch Available

https://git.kernel.org/stable/c/d570c48dd37dbe8fc6875d4461d01a9554ae2560

Event History

May 21, 2024
CVE Published
via MITRE·03:03 PM
Data Sourced
via MITRE·03:03 PM
Description
Data Sourced
via NVD·03:15 PM
RemedyDescriptionSeverityWeaknessAffected Software
May 22, 2024
Data Sourced
via Red Hat·09:19 AM
DescriptionSeverityAffected Software

Parent advisories

This vulnerability appears in the following advisories.

Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Frequently Asked Questions

1

What is the severity of CVE-2021-47383?

CVE-2021-47383 has been classified as a medium severity vulnerability due to its potential for out-of-bound memory access.

2

How do I fix CVE-2021-47383?

To mitigate CVE-2021-47383, update your Linux kernel to a version that is patched, such as 4.4.286, 4.9.285, 4.14.249, 4.19.209, 5.4.151, 5.10.71, 5.14.10, or 5.15.

3

What systems are affected by CVE-2021-47383?

CVE-2021-47383 affects specific versions of the Linux kernel as well as IBM Security Verify Governance and its related products up to version ISVG 10.0.2.

4

What type of vulnerability is CVE-2021-47383?

CVE-2021-47383 is an out-of-bounds memory access vulnerability found in the Linux kernel's tty subsystem.

5

Can CVE-2021-47383 lead to remote exploitation?

There is a potential risk that CVE-2021-47383 could be leveraged for remote exploitation depending on the context of use and existing security measures.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203