0.0
NA
CVE-2021-47326
CVE-2022-41345: F5 SSL/TLS Denial of Service
Description

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

INFO

Published Date :

May 21, 2024, 3:15 p.m.

Last Modified :

May 23, 2024, 2:15 p.m.

Source :

416baaa9-dc9f-4396-8d5f-8c081fb06d67

Remotely Exploitable :

No

Impact Score :

Exploitability Score :

Affected Products

The following products are affected by CVE-2021-47326 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID Vendor Product Action
1 Linux linux_kernel
: Total Affected Vendor : 1 | Products : 1

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2021-47326 vulnerability anywhere in the article.

The following table lists the changes that have been made to the CVE-2021-47326 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

  • CVE Translated by 416baaa9-dc9f-4396-8d5f-8c081fb06d67

    May. 23, 2024

    Action Type Old Value New Value
    Removed Translation Title: kernel de Linux Description: En el kernel de Linux, se resolvió la siguiente vulnerabilidad: x86/signal: detecta y previene un desbordamiento de la pila de señales alternativa. El kernel envía contexto a la pila del espacio de usuario para prepararse para el controlador de señales del usuario. Cuando el usuario ha proporcionado una pila de señales alternativa, a través de sigaltstack(2), es fácil para el núcleo verificar que el tamaño de la pila es suficiente para el contexto de hardware actual. Compruebe si escribir el contexto de hardware en la pila alternativa excederá su tamaño. En caso afirmativo, en lugar de corromper los datos del usuario y continuar con el controlador de señal original, se entrega una señal SIGSEGV inmediata. Refactorice el código de verificación del puntero de la pila desde on_sig_stack() y use el nuevo asistente. Si bien el kernel permite que el nuevo código fuente descubra y utilice un tamaño de pila de señales alternativo suficiente, esta verificación sigue siendo necesaria para proteger los archivos binarios con un tamaño de pila de señales alternativo insuficiente contra la corrupción de datos.
  • CVE Rejected by 416baaa9-dc9f-4396-8d5f-8c081fb06d67

    May. 23, 2024

    Action Type Old Value New Value
  • CVE Modified by 416baaa9-dc9f-4396-8d5f-8c081fb06d67

    May. 23, 2024

    Action Type Old Value New Value
    Changed Description In the Linux kernel, the following vulnerability has been resolved: x86/signal: Detect and prevent an alternate signal stack overflow The kernel pushes context on to the userspace stack to prepare for the user's signal handler. When the user has supplied an alternate signal stack, via sigaltstack(2), it is easy for the kernel to verify that the stack size is sufficient for the current hardware context. Check if writing the hardware context to the alternate stack will exceed it's size. If yes, then instead of corrupting user-data and proceeding with the original signal handler, an immediate SIGSEGV signal is delivered. Refactor the stack pointer check code from on_sig_stack() and use the new helper. While the kernel allows new source code to discover and use a sufficient alternate signal stack size, this check is still necessary to protect binaries with insufficient alternate signal stack size from data corruption. Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
    Removed Reference kernel.org https://git.kernel.org/stable/c/00fcd8f33e9b9f57115c3b1cfc4cb96450c18796
    Removed Reference kernel.org https://git.kernel.org/stable/c/74569cb9ed7bc60e395927f55d3dc3be143a0164
    Removed Reference kernel.org https://git.kernel.org/stable/c/74d6fcea1d896800e60f1c675137efebd1a6c9a6
    Removed Reference kernel.org https://git.kernel.org/stable/c/afb04d0b5543a5bf8e157b9119fbfc52606f4c11
    Removed Reference kernel.org https://git.kernel.org/stable/c/2beb4a53fc3f1081cedc1c1a198c7f56cc4fc60c
  • CVE Received by 416baaa9-dc9f-4396-8d5f-8c081fb06d67

    May. 21, 2024

    Action Type Old Value New Value
    Added Description In the Linux kernel, the following vulnerability has been resolved: x86/signal: Detect and prevent an alternate signal stack overflow The kernel pushes context on to the userspace stack to prepare for the user's signal handler. When the user has supplied an alternate signal stack, via sigaltstack(2), it is easy for the kernel to verify that the stack size is sufficient for the current hardware context. Check if writing the hardware context to the alternate stack will exceed it's size. If yes, then instead of corrupting user-data and proceeding with the original signal handler, an immediate SIGSEGV signal is delivered. Refactor the stack pointer check code from on_sig_stack() and use the new helper. While the kernel allows new source code to discover and use a sufficient alternate signal stack size, this check is still necessary to protect binaries with insufficient alternate signal stack size from data corruption.
    Added Reference kernel.org https://git.kernel.org/stable/c/00fcd8f33e9b9f57115c3b1cfc4cb96450c18796 [No types assigned]
    Added Reference kernel.org https://git.kernel.org/stable/c/74569cb9ed7bc60e395927f55d3dc3be143a0164 [No types assigned]
    Added Reference kernel.org https://git.kernel.org/stable/c/74d6fcea1d896800e60f1c675137efebd1a6c9a6 [No types assigned]
    Added Reference kernel.org https://git.kernel.org/stable/c/afb04d0b5543a5bf8e157b9119fbfc52606f4c11 [No types assigned]
    Added Reference kernel.org https://git.kernel.org/stable/c/2beb4a53fc3f1081cedc1c1a198c7f56cc4fc60c [No types assigned]
EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.
CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2021-47326 is associated with the following CWEs:

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2021-47326 weaknesses.

NONE - Vulnerability Scoring System
: