CVE-2021-47257

net: ieee802154: fix null deref in parse dev addr

Published: 5/21/2024 Last updated: 5/4/2025 Reserved: 4/10/2024

In the Linux kernel, the following vulnerability has been resolved: net: ieee802154: fix null deref in parse dev addr Fix a logic error that could result in a null deref if the user sets the mode incorrectly for the given addr type.

CNA assigner: Linux (416baaa9-dc9f-4396-8d5f-8c081fb06d67) Requested by: n/a

Metrics

Version	Score	Severity	Vector String
3.1	5.5	Medium	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Opam packages affected (27)

albatross cdrom conf-bpftool conf-libbpf conf-linux-libc-dev core core_unix hvsock mirage-block-unix mm ocaml-probes orun rawlink rawlink-eio rawlink-lwt shell solo5 solo5-bindings-hvt solo5-bindings-spt solo5-cross-aarch64 solo5-kernel-ukvm tracy-client tuntap uring vhd-format vhd-format-lwt xapi-stdext-unix

Products affected (1)

Product	Vendor	Version
Linux	Linux	3.7.0bS

References (14)

https://git.kernel.org/stable/c/1f95741981c899c4724647291fec5faa3c777185
https://git.kernel.org/stable/c/c6998ccfefa652bac3f9b236821e392af43efa1e
https://git.kernel.org/stable/c/5f728ec65485625e30f46e5b4917ff023ad29ea0
https://git.kernel.org/stable/c/d0f47648b87b6d5f204cb7f3cbce6d36dab85a67
https://git.kernel.org/stable/c/c7836de2cadd88bc2f20f2c5a3d4ef4c73aef627
https://git.kernel.org/stable/c/fdd51e34f45311ab6e48d2147cbc2904731b9993
https://git.kernel.org/stable/c/9fdd04918a452980631ecc499317881c1d120b70
https://git.kernel.org/stable/c/1f95741981c899c4724647291fec5faa3c777185
https://git.kernel.org/stable/c/c6998ccfefa652bac3f9b236821e392af43efa1e
https://git.kernel.org/stable/c/5f728ec65485625e30f46e5b4917ff023ad29ea0
https://git.kernel.org/stable/c/d0f47648b87b6d5f204cb7f3cbce6d36dab85a67
https://git.kernel.org/stable/c/c7836de2cadd88bc2f20f2c5a3d4ef4c73aef627
https://git.kernel.org/stable/c/fdd51e34f45311ab6e48d2147cbc2904731b9993
https://git.kernel.org/stable/c/9fdd04918a452980631ecc499317881c1d120b70