Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2021-47384
PUBLISHED
More InfoOfficial Page
Assigner-Linux
Assigner Org ID-416baaa9-dc9f-4396-8d5f-8c081fb06d67
View Known Exploited Vulnerability (KEV) details
Published At-21 May, 2024 | 15:03
Updated At-19 Jun, 2025 | 12:56
Rejected At-
▼CVE Numbering Authority (CNA)
hwmon: (w83793) Fix NULL pointer dereference by removing unnecessary structure field

In the Linux kernel, the following vulnerability has been resolved: hwmon: (w83793) Fix NULL pointer dereference by removing unnecessary structure field If driver read tmp value sufficient for (tmp & 0x08) && (!(tmp & 0x80)) && ((tmp & 0x7) == ((tmp >> 4) & 0x7)) from device then Null pointer dereference occurs. (It is possible if tmp = 0b0xyz1xyz, where same literals mean same numbers) Also lm75[] does not serve a purpose anymore after switching to devm_i2c_new_dummy_device() in w83791d_detect_subclients(). The patch fixes possible NULL pointer dereference by removing lm75[]. Found by Linux Driver Verification project (linuxtesting.org). [groeck: Dropped unnecessary continuation lines, fixed multi-line alignments]

Affected Products
Vendor
Linux Kernel Organization, IncLinux
Product
Linux
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Program Files
  • drivers/hwmon/w83793.c
Default Status
unaffected
Versions
Affected
  • From cf48d17623281c2b3185030ed23f148bd47e15de before 6cb01fe630eaffc5a2c3f7364436caddba286623 (git)
  • From cf48d17623281c2b3185030ed23f148bd47e15de before 7c4fd5de39f273626a2b0f3a446d2cc85cd47616 (git)
  • From cf48d17623281c2b3185030ed23f148bd47e15de before 746011193f44f97f8784edcf8327c587946745fc (git)
  • From cf48d17623281c2b3185030ed23f148bd47e15de before dd4d747ef05addab887dc8ff0d6ab9860bbcd783 (git)
Vendor
Linux Kernel Organization, IncLinux
Product
Linux
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Program Files
  • drivers/hwmon/w83793.c
Default Status
affected
Versions
Affected
  • 5.4
Unaffected
  • From 0 before 5.4 (semver)
  • From 5.4.151 through 5.4.* (semver)
  • From 5.10.71 through 5.10.* (semver)
  • From 5.14.10 through 5.14.* (semver)
  • From 5.15 through * (original_commit_for_fix)
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://git.kernel.org/stable/c/6cb01fe630eaffc5a2c3f7364436caddba286623
N/A
https://git.kernel.org/stable/c/7c4fd5de39f273626a2b0f3a446d2cc85cd47616
N/A
https://git.kernel.org/stable/c/746011193f44f97f8784edcf8327c587946745fc
N/A
https://git.kernel.org/stable/c/dd4d747ef05addab887dc8ff0d6ab9860bbcd783
N/A
▼Authorized Data Publishers (ADP)
1. CISA ADP Vulnrichment
Affected Products
Problem Types
TypeCWE IDDescription
CWECWE-noinfoCWE-noinfo Not enough information
Metrics
VersionBase scoreBase severityVector
3.15.3MEDIUM
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
2. CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://git.kernel.org/stable/c/6cb01fe630eaffc5a2c3f7364436caddba286623
x_transferred
https://git.kernel.org/stable/c/7c4fd5de39f273626a2b0f3a446d2cc85cd47616
x_transferred
https://git.kernel.org/stable/c/746011193f44f97f8784edcf8327c587946745fc
x_transferred
https://git.kernel.org/stable/c/dd4d747ef05addab887dc8ff0d6ab9860bbcd783
x_transferred
Details not found