CVE-2021-47445
📋 TL;DR
This CVE describes a null pointer dereference vulnerability in the Linux kernel's MSM DRM driver. An attacker could potentially cause a kernel panic or system crash by triggering this condition. Systems running affected Linux kernel versions with MSM DRM enabled are vulnerable.
💻 Affected Systems
- Linux kernel with MSM DRM driver
📦 What is this software?
Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →⚠️ Risk & Real-World Impact
Worst Case
Kernel panic leading to denial of service, potentially requiring system reboot.
Likely Case
System instability or crash affecting display functionality.
If Mitigated
Minimal impact with proper access controls and kernel hardening.
🎯 Exploit Status
Requires local access and ability to interact with DRM subsystem. No known public exploits.
🛠️ Fix & Mitigation
✅ Official Fix
Patch Version: Kernel versions containing the fix commits (0cd063aa0a09822cc1620fc59a67fe2f9f6338ac and others)
Vendor Advisory: https://git.kernel.org/stable/c/0cd063aa0a09822cc1620fc59a67fe2f9f6338ac
Restart Required: Yes
Instructions:
1. Update Linux kernel to patched version. 2. Rebuild kernel if compiling from source. 3. Reboot system to load new kernel.
🔧 Temporary Workarounds
Disable MSM DRM module
linuxPrevent loading of vulnerable driver if not required
echo 'blacklist msm' >> /etc/modprobe.d/blacklist.conf
rmmod msm
🧯 If You Can't Patch
- Restrict local user access to system
- Implement kernel hardening (disable unnecessary modules, restrict debugfs access)
🔍 How to Verify
Check if Vulnerable:
Check kernel version and if MSM DRM module is loaded: 'lsmod | grep msm' and 'uname -r'Check Version:
uname -rVerify Fix Applied:
Verify kernel version includes fix commits and MSM DRM module loads without issues📡 Detection & Monitoring
Log Indicators:
- Kernel panic messages
- NULL pointer dereference in kernel logs
- System crash/reboot events
Network Indicators:
- None - local vulnerability
SIEM Query:
source="kernel" AND ("NULL pointer" OR "kernel panic" OR "Oops")🔗 References
- https://git.kernel.org/stable/c/0cd063aa0a09822cc1620fc59a67fe2f9f6338ac
- https://git.kernel.org/stable/c/2133c4fc8e1348dcb752f267a143fe2254613b34
- https://git.kernel.org/stable/c/46c8ddede0273d1d132beefa9de8b820326982be
- https://git.kernel.org/stable/c/7f642b93710b6b1119bdff90be01e6b5a2a5d669
- https://git.kernel.org/stable/c/91a340768b012f5b910a203a805b97a345b3db37
- https://git.kernel.org/stable/c/bacac7d26849c8e903ceb7466d9ce8dc3c2797eb
- https://git.kernel.org/stable/c/f175b9a83e5c252d7c74acddc792840016caae0a
- https://git.kernel.org/stable/c/f302be08e3de94db8863a0b2958b2bb3e8e998e6
- https://git.kernel.org/stable/c/0cd063aa0a09822cc1620fc59a67fe2f9f6338ac
- https://git.kernel.org/stable/c/2133c4fc8e1348dcb752f267a143fe2254613b34
- https://git.kernel.org/stable/c/46c8ddede0273d1d132beefa9de8b820326982be
- https://git.kernel.org/stable/c/7f642b93710b6b1119bdff90be01e6b5a2a5d669
- https://git.kernel.org/stable/c/91a340768b012f5b910a203a805b97a345b3db37
- https://git.kernel.org/stable/c/bacac7d26849c8e903ceb7466d9ce8dc3c2797eb
- https://git.kernel.org/stable/c/f175b9a83e5c252d7c74acddc792840016caae0a
- https://git.kernel.org/stable/c/f302be08e3de94db8863a0b2958b2bb3e8e998e6
