Bug 2267935 (CVE-2021-47090) - CVE-2021-47090 kernel: mm/hwpoison: clear MF_COUNT_INCREASED before retrying get_any_page() [NEEDINFO]
Summary: CVE-2021-47090 kernel: mm/hwpoison: clear MF_COUNT_INCREASED before retrying ...
Keywords:
Status: NEW
Alias: CVE-2021-47090
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Product Security
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks: 2268181
TreeView+ depends on / blocked
 
Reported: 2024-03-05 16:05 UTC by Zack Miele
Modified: 2024-04-16 14:30 UTC (History)
51 users (show)

Fixed In Version: kernel 5.10.89, kernel 5.15.12, kernel 5.16
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:
Embargoed:
aubaker: needinfo? (zmiele)

Attachments (Terms of Use)

Description Zack Miele 2024-03-05 16:05:37 UTC 
In the Linux kernel, the following vulnerability has been resolved:

mm/hwpoison: clear MF_COUNT_INCREASED before retrying get_any_page()

The Linux kernel CVE team has assigned CVE-2021-47090 to this issue.

Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2024030413-CVE-2021-47090-a429@gregkh/T
Comment 4 Audra Mitchell 2024-03-12 20:22:17 UTC 
We have the fix for this issue in both RHEL8 and RHEL9:

$ kerneloscope downstream 2a57d83c78f8
557359d4abbd (in rhel-8.7, rhel-8.8, rhel-8.9, rhel-8.10) mm/hwpoison: clear MF_COUNT_INCREASED before retrying get_any_page()
ce8d02be3349 (in rhel-9.0, rhel-9.1, rhel-9.2, rhel-9.3, rhel-9.4) mm/hwpoison: clear MF_COUNT_INCREASED before retrying get_any_page()
Note You need to log in before you can comment on or make changes to this bug.