CVE-2021-43975

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2021-43975

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-43975.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2021-43975

Aliases

A-207093880
PUB-A-207093880

Downstream

DEBIAN-CVE-2021-43975

DLA-2941-1

DSA-5096-1

OESA-2021-1442

RHSA-2023:6901

RHSA-2023:7077

RHSA-2024:1188

RHSA-2024:1404

SUSE-SU-2022:0056-1

SUSE-SU-2022:0068-1

SUSE-SU-2022:0079-1

SUSE-SU-2022:0080-1

SUSE-SU-2022:0090-1

SUSE-SU-2022:0131-1

SUSE-SU-2022:0181-1

SUSE-SU-2022:0197-1

SUSE-SU-2022:0366-1

SUSE-SU-2022:0367-1

SUSE-SU-2022:0371-1

UBUNTU-CVE-2021-43975

USN-5278-1

USN-5294-1

USN-5294-2

USN-5297-1

USN-5337-1

USN-5368-1

USN-5385-1

openSUSE-SU-2022:0056-1

openSUSE-SU-2022:0131-1

openSUSE-SU-2022:0366-1

Related

Published

2021-11-17T17:15:08Z

Modified

2025-08-09T20:01:26Z

Severity

6.7 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

In the Linux kernel through 5.15.2, hwatlutilsfwrpcwait in drivers/net/ethernet/aquantia/atlantic/hwatl/hwatlutils.c allows an attacker (who can introduce a crafted device) to trigger an out-of-bounds write via a crafted length value.

References

Affected packages