1.6 KiB
CVE-2021-47631
Description
In the Linux kernel, the following vulnerability has been resolved:ARM: davinci: da850-evm: Avoid NULL pointer dereferenceWith newer versions of GCC, there is a panic in da850_evm_config_emac()when booting multi_v5_defconfig in QEMU under the palmetto-bmc machine:Unable to handle kernel NULL pointer dereference at virtual address 00000020pgd = (ptrval)[00000020] *pgd=00000000Internal error: Oops: 5 [#1] PREEMPT ARMModules linked in:CPU: 0 PID: 1 Comm: swapper Not tainted 5.15.0 #1Hardware name: Generic DT based systemPC is at da850_evm_config_emac+0x1c/0x120LR is at do_one_initcall+0x50/0x1e0The emac_pdata pointer in soc_info is NULL because davinci_soc_info onlygets populated on davinci machines but da850_evm_config_emac() is calledon all machines via device_initcall().Move the rmii_en assignment below the machine check so that it is onlydereferenced when running on a supported SoC.
POC
Reference
Github
No PoCs found on GitHub currently.