CVE-2021-47001

CVSS 3.1 Score 4.7 of 10 (medium)

Details

Published Feb 28, 2024

Updated: Jan 8, 2025

Summary

CVE-2021-47001 is a vulnerability affecting the Linux kernel's xprtrdma component. This issue arises from a race condition where, after a network reconnection, the reply handler opens the congestion window (cwnd) and enables more RPC calls before rpcrdma_post_recvs() can post enough Receive WRs to receive their replies. This results in an RNR and the immediate loss of the new connection. The vulnerability is more easily exploited when KASAN and disconnect injection are enabled, slowing down rpcrdma_rep_create() and allowing the send side to post a significant number of RPC calls before the Receive completion handler invokes ib_post_recv().

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

Linux Kernel

Affected Vendors

LINUX

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

GrayAlpha Uses Diverse Infection Vectors to Deploy PowerNet Loader and NetSupport RAT

Know What Matters

For Customers

For Partners