| The CVE-2021-46919 vulnerability affects the Linux kernel's dmaengine subsystem, specifically the idxd driver. The issue arises from an incorrect permission state check when storing the workqueue (WQ) size. Currently, the code allows changing the WQ size when the device is enabled but the WQ is disabled. However, according to the correct behavior, the WQ size can only be changed when the device is disabled. |
| |
| The vulnerability was introduced in kernel version 5.6 with commit c52ca478233c and has been fixed in versions 5.10.32 (commit 4ecf25595273), 5.11.16 (commit 05b7791c4c4a), and 5.12 (commit 0fff71c5a311). The affected file is drivers/dma/idxd/sysfs.c. |
| |
| To mitigate this issue, the Linux kernel CVE team recommends updating to the latest stable kernel version. If updating is not possible, the individual changes to resolve this issue can be found in the specified commits. However, cherry-picking individual commits is not recommended or supported by the Linux kernel community. |
| |
