NVD

CVE-2021-47400 Detail

Description

In the Linux kernel, the following vulnerability has been resolved: net: hns3: do not allow call hns3_nic_net_open repeatedly hns3_nic_net_open() is not allowed to called repeatly, but there is no checking for this. When doing device reset and setup tc concurrently, there is a small oppotunity to call hns3_nic_net_open repeatedly, and cause kernel bug by calling napi_enable twice. The calltrace information is like below: [ 3078.222780] ------------[ cut here ]------------ [ 3078.230255] kernel BUG at net/core/dev.c:6991! [ 3078.236224] Internal error: Oops - BUG: 0 [#1] PREEMPT SMP [ 3078.243431] Modules linked in: hns3 hclgevf hclge hnae3 vfio_iommu_type1 vfio_pci vfio_virqfd vfio pv680_mii(O) [ 3078.258880] CPU: 0 PID: 295 Comm: kworker/u8:5 Tainted: G O 5.14.0-rc4+ #1 [ 3078.269102] Hardware name: , BIOS KpxxxFPGA 1P B600 V181 08/12/2021 [ 3078.276801] Workqueue: hclge hclge_service_task [hclge] [ 3078.288774] pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) [ 3078.296168] pc : napi_enable+0x80/0x84 tc qdisc sho[w 3d0e7v8 .e3t0h218 79] lr : hns3_nic_net_open+0x138/0x510 [hns3] [ 3078.314771] sp : ffff8000108abb20 [ 3078.319099] x29: ffff8000108abb20 x28: 0000000000000000 x27: ffff0820a8490300 [ 3078.329121] x26: 0000000000000001 x25: ffff08209cfc6200 x24: 0000000000000000 [ 3078.339044] x23: ffff0820a8490300 x22: ffff08209cd76000 x21: ffff0820abfe3880 [ 3078.349018] x20: 0000000000000000 x19: ffff08209cd76900 x18: 0000000000000000 [ 3078.358620] x17: 0000000000000000 x16: ffffc816e1727a50 x15: 0000ffff8f4ff930 [ 3078.368895] x14: 0000000000000000 x13: 0000000000000000 x12: 0000259e9dbeb6b4 [ 3078.377987] x11: 0096a8f7e764eb40 x10: 634615ad28d3eab5 x9 : ffffc816ad8885b8 [ 3078.387091] x8 : ffff08209cfc6fb8 x7 : ffff0820ac0da058 x6 : ffff0820a8490344 [ 3078.396356] x5 : 0000000000000140 x4 : 0000000000000003 x3 : ffff08209cd76938 [ 3078.405365] x2 : 0000000000000000 x1 : 0000000000000010 x0 : ffff0820abfe38a0 [ 3078.414657] Call trace: [ 3078.418517] napi_enable+0x80/0x84 [ 3078.424626] hns3_reset_notify_up_enet+0x78/0xd0 [hns3] [ 3078.433469] hns3_reset_notify+0x64/0x80 [hns3] [ 3078.441430] hclge_notify_client+0x68/0xb0 [hclge] [ 3078.450511] hclge_reset_rebuild+0x524/0x884 [hclge] [ 3078.458879] hclge_reset_service_task+0x3c4/0x680 [hclge] [ 3078.467470] hclge_service_task+0xb0/0xb54 [hclge] [ 3078.475675] process_one_work+0x1dc/0x48c [ 3078.481888] worker_thread+0x15c/0x464 [ 3078.487104] kthread+0x160/0x170 [ 3078.492479] ret_from_fork+0x10/0x18 [ 3078.498785] Code: c8027c81 35ffffa2 d50323bf d65f03c0 (d4210000) [ 3078.506889] ---[ end trace 8ebe0340a1b0fb44 ]--- Once hns3_nic_net_open() is excute success, the flag HNS3_NIC_STATE_DOWN will be cleared. So add checking for this flag, directly return when HNS3_NIC_STATE_DOWN is no set.

Metrics

NVD enrichment efforts reference publicly available information to associate vector strings. CVSS information contributed by other sources is also displayed.

CVSS 4.0 Severity and Vector Strings:

NIST: NVD

N/A

NVD assessment not yet provided.

CVSS 3.x Severity and Vector Strings:

NIST: NVD

Base Score: 5.5 MEDIUM

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

ADP: CISA-ADP

Base Score: 4.0 MEDIUM

Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CVSS 2.0 Severity and Vector Strings:

National Institute of Standards and Technology

NIST: NVD

Base Score: N/A

NVD assessment not yet provided.

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to [email protected].

URL	Source(s)	Tag(s)
https://git.kernel.org/stable/c/3dac38bdce7932901b9f0b71c62331852c809e61	CVE, kernel.org	Patch
https://git.kernel.org/stable/c/5a31d4e73ada8022427b69b10fd1f01a6a8d4b3d	CVE, kernel.org	Patch
https://git.kernel.org/stable/c/5b09e88e1bf7fe86540fab4b5f3eece8abead39e	CVE, kernel.org	Patch
https://git.kernel.org/stable/c/f8ba689cb69523144d10606096ef686002dd7285	CVE, kernel.org	Patch

Weakness Enumeration

CWE-ID	CWE Name	Source
NVD-CWE-noinfo	Insufficient Information	NIST

Known Affected Software Configurations Switch to CPE 2.2

CPEs loading, please wait.

Denotes Vulnerable Software
Are we missing a CPE here? Please let us know.

Change History

7 change records found show changes

CVE Modified by kernel.org 6/17/2026 12:17:23 AM

Action

Type

Old Value

New Value

Added

Affected

[{"vendor":"Linux","product":"Linux","defaultStatus":"unaffected","programFiles":["drivers/net/ethernet/hisilicon/hns3/hns3_enet.c"],"repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","versions":[{"version":"e888402789b9db5de4fcda361331d66dbf0cd9fd","lessThan":"5a31d4e73ada8022427b69b10fd1f01a6a8d4b3d","versionType":"git","status":"affected"},{"version":"e888402789b9db5de4fcda361331d66dbf0cd9fd","lessThan":"f8ba689cb69523144d10606096ef686002dd7285","versionType":"git","status":"affected"},{"version":"e888402789b9db5de4fcda361331d66dbf0cd9fd","lessThan":"3dac38bdce7932901b9f0b71c62331852c809e61","versionType":"git","status":"affected"},{"version":"e888402789b9db5de4fcda361331d66dbf0cd9fd","lessThan":"5b09e88e1bf7fe86540fab4b5f3eece8abead39e","versionType":"git","status":"affected"}]},{"vendor":"Linux","product":"Linux","defaultStatus":"affected","programFiles":["drivers/net/ethernet/hisilicon/hns3/hns3_enet.c"],"repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","versions":[{"version":"5.0","status":"affected"},{"version":"0","lessThan":"5.0","versionType":"semver","status":"unaffected"},{"version":"5.4.151","lessThanOrEqual":"5.4.*","versionType":"semver","status":"unaffected"},{"version":"5.10.71","lessThanOrEqual":"5.10.*","versionType":"semver","status":"unaffected"},{"version":"5.14.10","lessThanOrEqual":"5.14.*","versionType":"semver","status":"unaffected"},{"version":"5.15","lessThanOrEqual":"*","versionType":"original_commit_for_fix","status":"unaffected"}]}]

Initial Analysis by NIST 9/25/2025 11:35:04 AM

Action	Type	New Value
Added	CVSS V3.1	AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Added	CWE	NVD-CWE-noinfo
Added	CPE Configuration	OR cpe:2.3:o:linux:linux_kernel:5.15:rc2::::::* cpe:2.3:o:linux:linux_kernel:5.15:rc3::::::* cpe:2.3:o:linux:linux_kernel:5.15:rc1::::::* cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 5.11 up to (excluding) 5.14.10 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 5.5 up to (excluding) 5.10.71 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 5.0 up to (excluding) 5.4.151
Added	Reference Type	CVE: https://git.kernel.org/stable/c/3dac38bdce7932901b9f0b71c62331852c809e61 Types: Patch
Added	Reference Type	CVE: https://git.kernel.org/stable/c/5a31d4e73ada8022427b69b10fd1f01a6a8d4b3d Types: Patch
Added	Reference Type	CVE: https://git.kernel.org/stable/c/5b09e88e1bf7fe86540fab4b5f3eece8abead39e Types: Patch
Added	Reference Type	CVE: https://git.kernel.org/stable/c/f8ba689cb69523144d10606096ef686002dd7285 Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/3dac38bdce7932901b9f0b71c62331852c809e61 Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/5a31d4e73ada8022427b69b10fd1f01a6a8d4b3d Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/5b09e88e1bf7fe86540fab4b5f3eece8abead39e Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/f8ba689cb69523144d10606096ef686002dd7285 Types: Patch

CVE Modified by CVE 11/21/2024 1:36:03 AM

Action	Type	New Value
Added	Reference	https://git.kernel.org/stable/c/3dac38bdce7932901b9f0b71c62331852c809e61
Added	Reference	https://git.kernel.org/stable/c/5a31d4e73ada8022427b69b10fd1f01a6a8d4b3d
Added	Reference	https://git.kernel.org/stable/c/5b09e88e1bf7fe86540fab4b5f3eece8abead39e
Added	Reference	https://git.kernel.org/stable/c/f8ba689cb69523144d10606096ef686002dd7285

New CVE Received from kernel.org 5/21/2024 11:15:25 AM

Action	Type	New Value
Added	Description	Record truncated, showing 2048 of 2825 characters. View Entire Change Record In the Linux kernel, the following vulnerability has been resolved: net: hns3: do not allow call hns3_nic_net_open repeatedly hns3_nic_net_open() is not allowed to called repeatly, but there is no checking for this. When doing device reset and setup tc concurrently, there is a small oppotunity to call hns3_nic_net_open repeatedly, and cause kernel bug by calling napi_enable twice. The calltrace information is like below: [ 3078.222780] ------------[ cut here ]------------ [ 3078.230255] kernel BUG at net/core/dev.c:6991! [ 3078.236224] Internal error: Oops - BUG: 0 [#1] PREEMPT SMP [ 3078.243431] Modules linked in: hns3 hclgevf hclge hnae3 vfio_iommu_type1 vfio_pci vfio_virqfd vfio pv680_mii(O) [ 3078.258880] CPU: 0 PID: 295 Comm: kworker/u8:5 Tainted: G O 5.14.0-rc4+ #1 [ 3078.269102] Hardware name: , BIOS KpxxxFPGA 1P B600 V181 08/12/2021 [ 3078.276801] Workqueue: hclge hclge_service_task [hclge] [ 3078.288774] pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) [ 3078.296168] pc : napi_enable+0x80/0x84 tc qdisc sho[w 3d0e7v8 .e3t0h218 79] lr : hns3_nic_net_open+0x138/0x510 [hns3] [ 3078.314771] sp : ffff8000108abb20 [ 3078.319099] x29: ffff8000108abb20 x28: 0000000000000000 x27: ffff0820a8490300 [ 3078.329121] x26: 0000000000000001 x25: ffff08209cfc6200 x24: 0000000000000000 [ 3078.339044] x23: ffff0820a8490300 x22: ffff08209cd76000 x21: ffff0820abfe3880 [ 3078.349018] x20: 0000000000000000 x19: ffff08209cd76900 x18: 0000000000000000 [ 3078.358620] x17: 0000000000000000 x16: ffffc816e1727a50 x15: 0000ffff8f4ff930 [ 3078.368895] x14: 0000000000000000 x13: 0000000000000000 x12: 0000259e9dbeb6b4 [ 3078.377987] x11: 0096a8f7e764eb40 x10: 634615ad28d3eab5 x9 : ffffc816ad8885b8 [ 3078.387091] x8 : ffff08209cfc6fb8 x7 : ffff0820ac0da058 x6 : ffff0820a8490344 [ 3078.396356] x5 : 0000000000000140 x4 : 0000000000000003 x3 : ffff08209cd76938 [ 3078.405365] x2 : 0000000000000000 x1 : 0000000000000010 x0 : ffff0820abfe38a0 [ 3078.414657] Call trace: [ 3078.418517] napi_enable+0x80/0x84 [ 3078.424626]
Added	Reference	kernel.org https://git.kernel.org/stable/c/3dac38bdce7932901b9f0b71c62331852c809e61 [No types assigned]
Added	Reference	kernel.org https://git.kernel.org/stable/c/5a31d4e73ada8022427b69b10fd1f01a6a8d4b3d [No types assigned]
Added	Reference	kernel.org https://git.kernel.org/stable/c/5b09e88e1bf7fe86540fab4b5f3eece8abead39e [No types assigned]
Added	Reference	kernel.org https://git.kernel.org/stable/c/f8ba689cb69523144d10606096ef686002dd7285 [No types assigned]

Quick Info

CVE Dictionary Entry:
CVE-2021-47400
NVD Published Date:
05/21/2024
NVD Last Modified:
06/17/2026
Source:
kernel.org

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

National Vulnerability Database

National Vulnerability Database

CVE-2021-47400 Detail

Description

Metrics

References to Advisories, Solutions, and Tools

Weakness Enumeration

Known Affected Software Configurations Switch to CPE 2.2

CPEs loading, please wait.

Change History

CVE Modified by CISA-ADP 6/17/2026 12:17:23 AM

CVE Modified by kernel.org 6/17/2026 12:17:23 AM

Initial Analysis by NIST 9/25/2025 11:35:04 AM

CVE Modified by CVE 11/21/2024 1:36:03 AM

CVE Modified by CISA-ADP 11/01/2024 2:35:01 PM

CVE Modified by kernel.org 5/28/2024 4:16:00 PM

New CVE Received from kernel.org 5/21/2024 11:15:25 AM

Quick Info