CVE-2021-47202— thermal: Fix NULL pointer dereferences in of_thermal_ functions
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2021-47202
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
thermal: Fix NULL pointer dereferences in of_thermal_ functions
Source: NVD (National Vulnerability Database)
Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: thermal: Fix NULL pointer dereferences in of_thermal_ functions of_parse_thermal_zones() parses the thermal-zones node and registers a thermal_zone device for each subnode. However, if a thermal zone is consuming a thermal sensor and that thermal sensor device hasn't probed yet, an attempt to set trip_point_*_temp for that thermal zone device can cause a NULL pointer dereference. Fix it. console:/sys/class/thermal/thermal_zone87 # echo 120000 > trip_point_0_temp ... Unable to handle kernel NULL pointer dereference at virtual address 0000000000000020 ... Call trace: of_thermal_set_trip_temp+0x40/0xc4 trip_point_temp_store+0xc0/0x1dc dev_attr_store+0x38/0x88 sysfs_kf_write+0x64/0xc0 kernfs_fop_write_iter+0x108/0x1d0 vfs_write+0x2f4/0x368 ksys_write+0x7c/0xec __arm64_sys_write+0x20/0x30 el0_svc_common.llvm.7279915941325364641+0xbc/0x1bc do_el0_svc+0x28/0xa0 el0_svc+0x14/0x24 el0_sync_handler+0x88/0xec el0_sync+0x1c0/0x200 While at it, fix the possible NULL pointer dereference in other functions as well: of_thermal_get_temp(), of_thermal_set_emul_temp(), of_thermal_get_trend().
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Linux kernel 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞,该漏洞源于of_thermal函数存在空指针取消引用漏洞。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2021-47202
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2021-47202
请登录查看更多情报信息。
Same Patch Batch · Linux · 2024-04-10 · 39 CVEs total
| CVE-2021-47210 | usb: typec: tipd: Remove WARN_ON in tps6598x_block_read | |
| CVE-2021-47199 | net/mlx5e: CT, Fix multiple allocations and memleak of mod acts | |
| CVE-2021-47200 | drm/prime: Fix use after free in mmap with drm_gem_ttm_mmap | |
| CVE-2021-47201 | iavf: free q_vectors before queues in iavf_disable_vf | |
| CVE-2021-47203 | scsi: lpfc: Fix list_add() corruption in lpfc_drain_txq() | |
| CVE-2021-47204 | net: dpaa2-eth: fix use-after-free in dpaa2_eth_remove | |
| CVE-2021-47205 | clk: sunxi-ng: Unregister clocks/resets when unbinding | |
| CVE-2021-47206 | usb: host: ohci-tmio: check return value after calling platform_get_resource() | |
| CVE-2021-47207 | ALSA: gus: fix null pointer dereference on pointer block | |
| CVE-2021-47209 | sched/fair: Prevent dead task groups from regaining cfs_rq's | |
| CVE-2021-47198 | scsi: lpfc: Fix use-after-free in lpfc_unreg_rpi() routine | |
| CVE-2021-47211 | ALSA: usb-audio: fix null pointer dereference on pointer cs_desc | |
| CVE-2021-47212 | net/mlx5: Update error handler for UCTX and UMEM | |
| CVE-2021-47214 | hugetlb, userfaultfd: fix reservation restore on userfaultfd error | |
| CVE-2021-47215 | net/mlx5e: kTLS, Fix crash in RX resync flow | |
| CVE-2021-47216 | scsi: advansys: Fix kernel pointer leak | |
| CVE-2021-47217 | x86/hyperv: Fix NULL deref in set_hv_tscchange_cb() if Hyper-V setup fails | |
| CVE-2021-47218 | selinux: fix NULL-pointer dereference when hashtab allocation fails | |
| CVE-2021-47219 | scsi: scsi_debug: Fix out-of-bound read in resp_report_tgtpgs() | |
| CVE-2021-47189 | btrfs: fix memory ordering between normal and ordered work functions |
Showing top 20 of 39 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same product: Linux
- CVE-2026-43500
rxrpc: Also unshare DATA/RESPONSE packets when paged frags a - CVE-2026-43475
scsi: storvsc: Fix scheduling while atomic on PREEMPT_RT - CVE-2026-43474
fs: init flags_valid before calling vfs_fileattr_get - CVE-2026-43473
scsi: mpi3mr: Add NULL checks when resetting request and rep - CVE-2026-43472
unshare: fix unshare_fs() handling
Same vendor: Linux
- CVE-2026-43500
rxrpc: Also unshare DATA/RESPONSE packets when paged frags a - CVE-2026-43475
scsi: storvsc: Fix scheduling while atomic on PREEMPT_RT - CVE-2026-43474
fs: init flags_valid before calling vfs_fileattr_get - CVE-2026-43473
scsi: mpi3mr: Add NULL checks when resetting request and rep - CVE-2026-43472
unshare: fix unshare_fs() handling
V. Comments for CVE-2021-47202
No comments yet