NVD

CVE-2021-47476 Detail

Description

In the Linux kernel, the following vulnerability has been resolved: comedi: ni_usb6501: fix NULL-deref in command paths The driver uses endpoint-sized USB transfer buffers but had no sanity checks on the sizes. This can lead to zero-size-pointer dereferences or overflowed transfer buffers in ni6501_port_command() and ni6501_counter_command() if a (malicious) device has smaller max-packet sizes than expected (or when doing descriptor fuzz testing). Add the missing sanity checks to probe().

Metrics

NVD enrichment efforts reference publicly available information to associate vector strings. CVSS information contributed by other sources is also displayed.

CVSS 4.0 Severity and Vector Strings:

NIST: NVD

N/A

NVD assessment not yet provided.

CVSS 3.x Severity and Vector Strings:

NIST: NVD

Base Score: N/A

NVD assessment not yet provided.

ADP: CISA-ADP

Base Score: 4.6 MEDIUM

Vector: CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS 2.0 Severity and Vector Strings:

National Institute of Standards and Technology

NIST: NVD

Base Score: N/A

NVD assessment not yet provided.

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to [email protected].

URL	Source(s)	Tag(s)
https://git.kernel.org/stable/c/4a9d43cb5d5f39fa39fc1da438517004cc95f7ea	CVE, kernel.org	Patch
https://git.kernel.org/stable/c/58478143771b20ab219937b1c30a706590a59224	CVE, kernel.org	Patch
https://git.kernel.org/stable/c/907767da8f3a925b060c740e0b5c92ea7dbec440	CVE, kernel.org	Patch
https://git.kernel.org/stable/c/aa39738423503825625853b643b9e99d11c23816	CVE, kernel.org	Patch
https://git.kernel.org/stable/c/b0156b7c9649d8f55a2ce3d3258509f1b2a181c3	CVE, kernel.org	Patch
https://git.kernel.org/stable/c/bc51111bf6e8e7b6cc94b133e4c291273a16acd1	CVE, kernel.org	Patch
https://git.kernel.org/stable/c/d6a727a681a39ae4f73081a9bedb45d14f95bdd1	CVE, kernel.org	Patch
https://git.kernel.org/stable/c/df7b1238f3b599a0b9284249772cdfd1ea83a632	CVE, kernel.org	Patch
https://git.kernel.org/stable/c/ef143dc0c3defe56730ecd3a9de7b3e1d7e557c1	CVE, kernel.org	Patch

Weakness Enumeration

CWE-ID	CWE Name	Source
CWE-476	NULL Pointer Dereference	CISA-ADP

Known Affected Software Configurations Switch to CPE 2.2

CPEs loading, please wait.

Denotes Vulnerable Software
Are we missing a CPE here? Please let us know.

Change History

6 change records found show changes

Initial Analysis by NIST 4/02/2025 11:10:34 AM

Action	Type	New Value
Added	CPE Configuration	OR cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 4.10 up to (excluding) 4.14.255 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 4.5 up to (excluding) 4.9.290 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 4.15 up to (excluding) 4.19.217 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 4.20 up to (excluding) 5.4.159 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 5.11 up to (excluding) 5.14.18 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 5.15 up to (excluding) 5.15.2 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 3.18 up to (excluding) 4.4.292 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 5.5 up to (excluding) 5.10.79
Added	Reference Type	CVE: https://git.kernel.org/stable/c/4a9d43cb5d5f39fa39fc1da438517004cc95f7ea Types: Patch
Added	Reference Type	CVE: https://git.kernel.org/stable/c/58478143771b20ab219937b1c30a706590a59224 Types: Patch
Added	Reference Type	CVE: https://git.kernel.org/stable/c/907767da8f3a925b060c740e0b5c92ea7dbec440 Types: Patch
Added	Reference Type	CVE: https://git.kernel.org/stable/c/aa39738423503825625853b643b9e99d11c23816 Types: Patch
Added	Reference Type	CVE: https://git.kernel.org/stable/c/b0156b7c9649d8f55a2ce3d3258509f1b2a181c3 Types: Patch
Added	Reference Type	CVE: https://git.kernel.org/stable/c/bc51111bf6e8e7b6cc94b133e4c291273a16acd1 Types: Patch
Added	Reference Type	CVE: https://git.kernel.org/stable/c/d6a727a681a39ae4f73081a9bedb45d14f95bdd1 Types: Patch
Added	Reference Type	CVE: https://git.kernel.org/stable/c/df7b1238f3b599a0b9284249772cdfd1ea83a632 Types: Patch
Added	Reference Type	CVE: https://git.kernel.org/stable/c/ef143dc0c3defe56730ecd3a9de7b3e1d7e557c1 Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/4a9d43cb5d5f39fa39fc1da438517004cc95f7ea Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/58478143771b20ab219937b1c30a706590a59224 Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/907767da8f3a925b060c740e0b5c92ea7dbec440 Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/aa39738423503825625853b643b9e99d11c23816 Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/b0156b7c9649d8f55a2ce3d3258509f1b2a181c3 Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/bc51111bf6e8e7b6cc94b133e4c291273a16acd1 Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/d6a727a681a39ae4f73081a9bedb45d14f95bdd1 Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/df7b1238f3b599a0b9284249772cdfd1ea83a632 Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/ef143dc0c3defe56730ecd3a9de7b3e1d7e557c1 Types: Patch

CVE Modified by CVE 11/21/2024 1:36:15 AM

Action	Type	New Value
Added	Reference	https://git.kernel.org/stable/c/4a9d43cb5d5f39fa39fc1da438517004cc95f7ea
Added	Reference	https://git.kernel.org/stable/c/58478143771b20ab219937b1c30a706590a59224
Added	Reference	https://git.kernel.org/stable/c/907767da8f3a925b060c740e0b5c92ea7dbec440
Added	Reference	https://git.kernel.org/stable/c/aa39738423503825625853b643b9e99d11c23816
Added	Reference	https://git.kernel.org/stable/c/b0156b7c9649d8f55a2ce3d3258509f1b2a181c3
Added	Reference	https://git.kernel.org/stable/c/bc51111bf6e8e7b6cc94b133e4c291273a16acd1
Added	Reference	https://git.kernel.org/stable/c/d6a727a681a39ae4f73081a9bedb45d14f95bdd1
Added	Reference	https://git.kernel.org/stable/c/df7b1238f3b599a0b9284249772cdfd1ea83a632
Added	Reference	https://git.kernel.org/stable/c/ef143dc0c3defe56730ecd3a9de7b3e1d7e557c1

New CVE Received from kernel.org 5/22/2024 5:15:09 AM

Action	Type	New Value
Added	Description	In the Linux kernel, the following vulnerability has been resolved: comedi: ni_usb6501: fix NULL-deref in command paths The driver uses endpoint-sized USB transfer buffers but had no sanity checks on the sizes. This can lead to zero-size-pointer dereferences or overflowed transfer buffers in ni6501_port_command() and ni6501_counter_command() if a (malicious) device has smaller max-packet sizes than expected (or when doing descriptor fuzz testing). Add the missing sanity checks to probe().
Added	Reference	kernel.org https://git.kernel.org/stable/c/4a9d43cb5d5f39fa39fc1da438517004cc95f7ea [No types assigned]
Added	Reference	kernel.org https://git.kernel.org/stable/c/58478143771b20ab219937b1c30a706590a59224 [No types assigned]
Added	Reference	kernel.org https://git.kernel.org/stable/c/907767da8f3a925b060c740e0b5c92ea7dbec440 [No types assigned]
Added	Reference	kernel.org https://git.kernel.org/stable/c/aa39738423503825625853b643b9e99d11c23816 [No types assigned]
Added	Reference	kernel.org https://git.kernel.org/stable/c/b0156b7c9649d8f55a2ce3d3258509f1b2a181c3 [No types assigned]
Added	Reference	kernel.org https://git.kernel.org/stable/c/bc51111bf6e8e7b6cc94b133e4c291273a16acd1 [No types assigned]
Added	Reference	kernel.org https://git.kernel.org/stable/c/d6a727a681a39ae4f73081a9bedb45d14f95bdd1 [No types assigned]
Added	Reference	kernel.org https://git.kernel.org/stable/c/df7b1238f3b599a0b9284249772cdfd1ea83a632 [No types assigned]
Added	Reference	kernel.org https://git.kernel.org/stable/c/ef143dc0c3defe56730ecd3a9de7b3e1d7e557c1 [No types assigned]

Quick Info

CVE Dictionary Entry:
CVE-2021-47476
NVD Published Date:
05/22/2024
NVD Last Modified:
04/02/2025
Source:
kernel.org

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

National Vulnerability Database

National Vulnerability Database

CVE-2021-47476 Detail

Description

Metrics

References to Advisories, Solutions, and Tools

Weakness Enumeration

Known Affected Software Configurations Switch to CPE 2.2

CPEs loading, please wait.

Change History

Initial Analysis by NIST 4/02/2025 11:10:34 AM

CVE Modified by CVE 11/21/2024 1:36:15 AM

CVE Modified by CISA-ADP 11/01/2024 11:35:04 AM

CVE Modified by CISA-ADP 7/02/2024 9:38:00 PM

CVE Modified by kernel.org 5/28/2024 4:16:06 PM

New CVE Received from kernel.org 5/22/2024 5:15:09 AM

Quick Info