Rapid7 Vulnerability & Exploit Database

Alma Linux: CVE-2021-47153: Moderate: kernel update (Multiple Advisories)

Free InsightVM Trial No Credit Card Necessary
2024 Attack Intel Report Latest research by Rapid7 Labs
Back to Search

Alma Linux: CVE-2021-47153: Moderate: kernel update (Multiple Advisories)



In the Linux kernel, the following vulnerability has been resolved: i2c: i801: Don't generate an interrupt on bus reset Now that the i2c-i801 driver supports interrupts, setting the KILL bit in a attempt to recover from a timed out transaction triggers an interrupt. Unfortunately, the interrupt handler (i801_isr) is not prepared for this situation and will try to process the interrupt as if it was signaling the end of a successful transaction. In the case of a block transaction, this can result in an out-of-range memory access. This condition was reproduced several times by syzbot: https://syzkaller.appspot.com/bug?extid=ed71512d469895b5b34e https://syzkaller.appspot.com/bug?extid=8c8dedc0ba9e03f6c79e https://syzkaller.appspot.com/bug?extid=c8ff0b6d6c73d81b610e https://syzkaller.appspot.com/bug?extid=33f6c360821c399d69eb https://syzkaller.appspot.com/bug?extid=be15dc0b1933f04b043a https://syzkaller.appspot.com/bug?extid=b4d3fd1dfd53e90afd79 So disable interrupts while trying to reset the bus. Interrupts will be enabled again for the following transaction.


  • alma-upgrade-bpftool
  • alma-upgrade-kernel
  • alma-upgrade-kernel-abi-stablelists
  • alma-upgrade-kernel-core
  • alma-upgrade-kernel-cross-headers
  • alma-upgrade-kernel-debug
  • alma-upgrade-kernel-debug-core
  • alma-upgrade-kernel-debug-devel
  • alma-upgrade-kernel-debug-modules
  • alma-upgrade-kernel-debug-modules-extra
  • alma-upgrade-kernel-devel
  • alma-upgrade-kernel-doc
  • alma-upgrade-kernel-headers
  • alma-upgrade-kernel-modules
  • alma-upgrade-kernel-modules-extra
  • alma-upgrade-kernel-rt
  • alma-upgrade-kernel-rt-core
  • alma-upgrade-kernel-rt-debug
  • alma-upgrade-kernel-rt-debug-core
  • alma-upgrade-kernel-rt-debug-devel
  • alma-upgrade-kernel-rt-debug-kvm
  • alma-upgrade-kernel-rt-debug-modules
  • alma-upgrade-kernel-rt-debug-modules-extra
  • alma-upgrade-kernel-rt-devel
  • alma-upgrade-kernel-rt-kvm
  • alma-upgrade-kernel-rt-modules
  • alma-upgrade-kernel-rt-modules-extra
  • alma-upgrade-kernel-tools
  • alma-upgrade-kernel-tools-libs
  • alma-upgrade-kernel-tools-libs-devel
  • alma-upgrade-kernel-zfcpdump
  • alma-upgrade-kernel-zfcpdump-core
  • alma-upgrade-kernel-zfcpdump-devel
  • alma-upgrade-kernel-zfcpdump-modules
  • alma-upgrade-kernel-zfcpdump-modules-extra
  • alma-upgrade-perf
  • alma-upgrade-python3-perf

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center