CVE-2021-47468
📋 TL;DR
This CVE describes a race condition vulnerability in the Linux kernel's mISDN subsystem where a sleeping function (card->isac.release()) is called from an atomic context while holding a lock. This can cause kernel panics or system crashes, affecting systems using ISDN hardware with the netjet driver.
💻 Affected Systems
- Linux kernel
📦 What is this software?
Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →⚠️ Risk & Real-World Impact
Worst Case
Kernel panic leading to system crash and denial of service, potentially causing data loss or service disruption.
Likely Case
System instability or crash when ISDN hardware is being removed or reconfigured, requiring reboot to restore service.
If Mitigated
Minor performance impact or no effect if ISDN hardware is not in use or properly configured.
🎯 Exploit Status
Exploitation requires triggering the specific race condition during hardware removal/configuration, typically requiring local access and specific hardware.
🛠️ Fix & Mitigation
✅ Official Fix
Patch Version: Fixed in kernel commits: 37e4f57b22cc5ebb3f80cf0f74fdeb487f082367 and related backports
Vendor Advisory: https://git.kernel.org/stable/c/37e4f57b22cc5ebb3f80cf0f74fdeb487f082367
Restart Required: Yes
Instructions:
1. Update Linux kernel to patched version from your distribution. 2. For custom kernels, apply the fix commit. 3. Reboot system to load new kernel.
🔧 Temporary Workarounds
Unload vulnerable driver
linuxRemove the netjet driver module if not needed
sudo rmmod netjet
sudo modprobe -r netjet
Blacklist driver
linuxPrevent netjet driver from loading automatically
echo 'blacklist netjet' | sudo tee /etc/modprobe.d/blacklist-netjet.conf
🧯 If You Can't Patch
- Ensure netjet driver is not loaded (check with lsmod)
- Avoid hot-plugging or reconfiguring ISDN hardware while system is running
🔍 How to Verify
Check if Vulnerable:
Check if netjet module is loaded: lsmod | grep netjet AND check kernel version against patched versionsCheck Version:
uname -rVerify Fix Applied:
Verify kernel version is patched AND netjet module loads without errors during hardware operations📡 Detection & Monitoring
Log Indicators:
- Kernel logs showing 'sleeping function called from invalid context'
- System crashes during ISDN hardware operations
Network Indicators:
- None - this is a local kernel issue
SIEM Query:
source="kernel" AND "sleeping function called from invalid context" AND "netjet"🔗 References
- https://git.kernel.org/stable/c/37e4f57b22cc5ebb3f80cf0f74fdeb487f082367
- https://git.kernel.org/stable/c/4054b869dc263228d30a4755800b78f0f2ba0c89
- https://git.kernel.org/stable/c/6510e80a0b81b5d814e3aea6297ba42f5e76f73c
- https://git.kernel.org/stable/c/6f95c97e0f9d6eb39c3f2cb45e8fa4268d1b372b
- https://git.kernel.org/stable/c/9f591cbdbed3d7822b2bdba89b34a6d7b434317d
- https://git.kernel.org/stable/c/a5b34409d3fc52114c828be4adbc30744fa3258b
- https://git.kernel.org/stable/c/ef269a8808cb1759245a98a7fe16fceaebad894c
- https://git.kernel.org/stable/c/f5966ba53013149bcf94e1536644a958dd00a026
- https://git.kernel.org/stable/c/37e4f57b22cc5ebb3f80cf0f74fdeb487f082367
- https://git.kernel.org/stable/c/4054b869dc263228d30a4755800b78f0f2ba0c89
- https://git.kernel.org/stable/c/6510e80a0b81b5d814e3aea6297ba42f5e76f73c
- https://git.kernel.org/stable/c/6f95c97e0f9d6eb39c3f2cb45e8fa4268d1b372b
- https://git.kernel.org/stable/c/9f591cbdbed3d7822b2bdba89b34a6d7b434317d
- https://git.kernel.org/stable/c/a5b34409d3fc52114c828be4adbc30744fa3258b
- https://git.kernel.org/stable/c/ef269a8808cb1759245a98a7fe16fceaebad894c
- https://git.kernel.org/stable/c/f5966ba53013149bcf94e1536644a958dd00a026
