Rapid7 Vulnerability & Exploit Database

Oracle Linux: (CVE-2021-47073) ELSA-2024-4211: kernel security and bug fix update

Free InsightVM Trial No Credit Card Necessary
2024 Attack Intel Report Latest research by Rapid7 Labs
Back to Search

Oracle Linux: (CVE-2021-47073) ELSA-2024-4211: kernel security and bug fix update

Severity
4
CVSS
(AV:L/AC:M/Au:N/C:P/I:P/A:P)
Published
03/01/2024
Created
07/04/2024
Added
07/03/2024
Modified
07/03/2024

Description

In the Linux kernel, the following vulnerability has been resolved:

platform/x86: dell-smbios-wmi: Fix oops on rmmod dell_smbios

init_dell_smbios_wmi() only registers the dell_smbios_wmi_driver on systems

where the Dell WMI interface is supported. While exit_dell_smbios_wmi()

unregisters it unconditionally, this leads to the following oops:

[ 175.722921] ------------[ cut here ]------------

[ 175.722925] Unexpected driver unregister!

[ 175.722939] WARNING: CPU: 1 PID: 3630 at drivers/base/driver.c:194 driver_unregister+0x38/0x40

...

[ 175.723089] Call Trace:

[ 175.723094] cleanup_module+0x5/0xedd [dell_smbios]

...

[ 175.723148] ---[ end trace 064c34e1ad49509d ]---

Make the unregister happen on the same condition the register happens

to fix this.

Solution(s)

  • oracle-linux-upgrade-kernel

References

  • ELSA-2024-4211
  • CVE-2021-47073

insightVM

Advanced vulnerability management analytics and reporting.
Key Features
Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;