{"id":"CVE-2021-47159","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dsa: fix a crash if -\u003eget_sset_count() fails\n\nIf ds-\u003eops-\u003eget_sset_count() fails then it \"count\" is a negative error\ncode such as -EOPNOTSUPP.  Because \"i\" is an unsigned int, the negative\nerror code is type promoted to a very high value and the loop will\ncorrupt memory until the system crashes.\n\nFix this by checking for error codes and changing the type of \"i\" to\njust int.","modified":"2026-03-15T22:00:16.869995Z","published":"2024-03-25T10:15:08.330Z","related":["SUSE-SU-2024:1643-1","SUSE-SU-2024:1646-1","SUSE-SU-2024:1870-1"],"references":[{"type":"FIX","url":"https://git.kernel.org/stable/c/0f2cb08c57edefb0e7b5045e0e3e9980a3d3aa37"},{"type":"FIX","url":"https://git.kernel.org/stable/c/7b22466648a4f8e3e94f57ca428d1531866d1373"},{"type":"FIX","url":"https://git.kernel.org/stable/c/a269333fa5c0c8e53c92b5a28a6076a28cde3e83"},{"type":"FIX","url":"https://git.kernel.org/stable/c/caff86f85512b8e0d9830e8b8b0dfe13c68ce5b6"},{"type":"FIX","url":"https://git.kernel.org/stable/c/ce5355f140a7987011388c7e30c4f8fbe180d3e8"}],"affected":[{"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"4.7"},{"fixed":"4.19.193"}]},{"events":[{"introduced":"4.20"},{"fixed":"5.4.124"}]},{"events":[{"introduced":"5.5"},{"fixed":"5.10.42"}]},{"events":[{"introduced":"5.11"},{"fixed":"5.12.9"}]},{"events":[{"introduced":"0"},{"last_affected":"5.13-rc1"}]},{"events":[{"introduced":"0"},{"last_affected":"5.13-rc2"}]},{"events":[{"introduced":"0"},{"last_affected":"5.13-rc3"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-47159.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}]}